Fortinet black logo

FortiSwitch Integration

Home FortiNAC-F 7.2.0 FortiSwitch Integration
7.2.0
7.4.0
7.2.0

Uplink Review

Uplink Review

All devices connected to an uplink port are ignored. Therefore, it is important to verify the validity of any uplinks defined by FortiNAC based upon the number of MAC addresses learned off the port (Threshold uplink). For more information, see Port uplink types in the Administration Guide.

Review the ports FortiNAC has listed as Threshold uplinks. If the port is legitimately an uplink, manually configure the port.

  1. Filter on the Connection Status Threshold Uplink in Topology port view of the FortiSwitch (Standalone) or FortiGate (FortiLink Mode).

  2. Manually set ports that should be uplinks to “Always Uplink.” This is a way to keep track of which uplinks have been verified.

    Switches with a mix of servers and access ports: mark server ports as “Always Uplink” if ports are physically secure and there is no interest in visibility of those servers.

    1. Right click on the port and select Port Properties or multi-select ports and select Modify Port Properties.

    2. Click Always Uplink.

If any ports display “Threshold Uplink” as a Connection State in the future, it will indicate a new connection and should be verified.

Previous
Next

Uplink Review

All devices connected to an uplink port are ignored. Therefore, it is important to verify the validity of any uplinks defined by FortiNAC based upon the number of MAC addresses learned off the port (Threshold uplink). For more information, see Port uplink types in the Administration Guide.

Review the ports FortiNAC has listed as Threshold uplinks. If the port is legitimately an uplink, manually configure the port.

  1. Filter on the Connection Status Threshold Uplink in Topology port view of the FortiSwitch (Standalone) or FortiGate (FortiLink Mode).

  2. Manually set ports that should be uplinks to “Always Uplink.” This is a way to keep track of which uplinks have been verified.

    Switches with a mix of servers and access ports: mark server ports as “Always Uplink” if ports are physically secure and there is no interest in visibility of those servers.

    1. Right click on the port and select Port Properties or multi-select ports and select Modify Port Properties.

    2. Click Always Uplink.

If any ports display “Threshold Uplink” as a Connection State in the future, it will indicate a new connection and should be verified.

Previous
Next