Fortinet black logo

FortiSwitch Integration

Home FortiNAC-F 7.2.0 FortiSwitch Integration
7.2.0
7.4.0
7.2.0

SNMP Link Traps (FortiOS 6.2.0 and below)

SNMP Link Traps (FortiOS 6.2.0 and below)

Note: If Syslog is already configured, do not configure SNMP traps and proceed to Configure FortiNAC.

In the FortiSwitch CLI, configure Link State traps to be sent to FortiNAC’s primary IP address when clients connect or disconnect. Traps are configured per switch. For FortiSwitch CLI access instructions, see Appendix.

Reference:

https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/a2951442-519d-11e9-94bf-00505692583a/FortiSwitch-6.2.0-Managed_by_FortiOS_6.2.pdf

Type the following commands

config system interface

edit "internal"

set mode dhcp

set allowaccess ping https http ssh snmp telnet

set type physical

set snmp-index 12

set defaultgw enable

next

end

config system snmp sysinfo

set status enable

end

config system snmp community

edit <number>

config hosts

edit <number>

set ip <FortiNAC eth0 IP address> <mask>

next

end

set name "<community string>"

set trap-v2c-status disable

next

end

SNMPv1 Example

The below is used in all the following configuration examples:

internal = Management interface name

10.12.240.7/24 = Primary NAC Server eth0 IP address

Community name = fortinet

config system interface

edit "internal"

set mode dhcp

set allowaccess ping https ssh snmp

set type physical

set snmp-index 12

set defaultgw enable

next

end

config system snmp sysinfo

set status enable

end

config system snmp community

edit 1

config hosts

edit 1

set ip 10.12.240.7 255.255.255.0

next

end

set name "fortinet"

set trap-v2c-status disable

next

end

Proceed to Configure FortiNAC (Link Mode).

Previous
Next

SNMP Link Traps (FortiOS 6.2.0 and below)

Note: If Syslog is already configured, do not configure SNMP traps and proceed to Configure FortiNAC.

In the FortiSwitch CLI, configure Link State traps to be sent to FortiNAC’s primary IP address when clients connect or disconnect. Traps are configured per switch. For FortiSwitch CLI access instructions, see Appendix.

Reference:

https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/a2951442-519d-11e9-94bf-00505692583a/FortiSwitch-6.2.0-Managed_by_FortiOS_6.2.pdf

Type the following commands

config system interface

edit "internal"

set mode dhcp

set allowaccess ping https http ssh snmp telnet

set type physical

set snmp-index 12

set defaultgw enable

next

end

config system snmp sysinfo

set status enable

end

config system snmp community

edit <number>

config hosts

edit <number>

set ip <FortiNAC eth0 IP address> <mask>

next

end

set name "<community string>"

set trap-v2c-status disable

next

end

SNMPv1 Example

The below is used in all the following configuration examples:

internal = Management interface name

10.12.240.7/24 = Primary NAC Server eth0 IP address

Community name = fortinet

config system interface

edit "internal"

set mode dhcp

set allowaccess ping https ssh snmp

set type physical

set snmp-index 12

set defaultgw enable

next

end

config system snmp sysinfo

set status enable

end

config system snmp community

edit 1

config hosts

edit 1

set ip 10.12.240.7 255.255.255.0

next

end

set name "fortinet"

set trap-v2c-status disable

next

end

Proceed to Configure FortiNAC (Link Mode).

Previous
Next