Manage FortiSwitch with FortiGate, FortiOS 7.0

Рет қаралды 27,733

Күн бұрын

We will cover how to manage a FortiSwitch via the FortiGate - currently (as of 7.0 firmware)
Some commands used in the video:
exec switch-controller get-conn-status
exec switch-controller get-sync-status all
diagnose switch-controller switch-info ?
diagnose switch-controller switch-info port-stats
diagnose switch-controller switch-info mac-table
exec switch-controller get-physical-conn dot
diagnose debug application fortilinkd -1
diagnose debug application flcfgd -1
diagnose debug enable
diagnose debug disable # disable the output
diagnose debug reset # reset the debug filter
Timestamps:
0:00 Different topologies/FortiLink Benefits
0:51 FortiLink Interface Configuration
2:25 Adding/Authorizing a FortiSwitch
4:11 FortiSwitch/FortiGate Configuration
8:37 - Aggregate interface/Redundancy
11:50 - FortiSwitch Topologies
13:11 - Add another FortiSwitch to the Topology
14:57 - Troubleshooting diagnostic/debugs
18:43 - NTP Importance
19:08 - Troubleshooting Sniffer/Frame Flow

Пікірлер: 16

@madhanraj7092 Жыл бұрын

Im preparing myself for an implementation. And this is all i want... Thanks for this video...👍🤝

@tonyle886 Жыл бұрын

thanks for uploading, keep them coming.

@guptalakshay21 Жыл бұрын

very very informative. keep posting more. much thanks

@alanbrownell669 Жыл бұрын

Very helpful! Keep them coming!

@DeyonSingh Жыл бұрын

one of the best videos i seen!

@mamadousalioubalde7962 11 ай бұрын

very helful, thanks !!!

@bytes86 Жыл бұрын

Thanks!

@jasonmorris4eva Жыл бұрын

Is there anyway to get back the switch layout under the Manage FortiSwitch tab? In version 6.2.15 and earlier it displays pictorial diagram of the actual switches connected and shows you all the active/inactive ports etc. But in version 6.4 and upwards that display layout is no longer there. It's as if Fortinet went backwards with this aspect of the firmware upgrade.

@StarsGmail 10 ай бұрын

thank you for your effort, just review the video, and I would like to know how to config the trunk port will the same port that fortilink is using. As you mentioned that the trunk port (por24) is already setup, but I cannot see the trunk group from your video. I have tried to deploy the trunk port with same fortlink port but failed. would you please share the information how to work with it please? Thanks

@OttoCalderon Жыл бұрын

Excelent video, very helpful. Just one question, don´t you have to configure the ISL protocol in order to have real redundancy among switches...?

@tothepointfortinet3823 Жыл бұрын

Yes there's ways to get more redundancy but as for the ISL that's just the naming for a link between two FortiSwitches (unless using MCLAG in which case it's called ICL). Here's a couple examples of getting some better redundancy: docs.fortinet.com/document/fortiswitch/7.2.4/fortilink-guide/801204/single-fortigate-unit-managing-a-stack-of-several-fortiswitch-units - So there's a ring style between all the switches, theoretically if any one link in the topology is lost then the network should recover docs.fortinet.com/document/fortiswitch/7.2.4/fortilink-guide/780635/switch-redundancy-with-mclag - This one uses MCLAG and also improves redundancy. This gives additional scalability and performance advantages too I think this is a good topic to cover, I'll make a video on this (ie. has some more focus on redundancy/scale/performance considerations with ring topology and MCLAG topology)

@OttoCalderon Жыл бұрын

@@tothepointfortinet3823 Thanks for your answer and the links. Looking foward for those videos configurating and using ISL and ICL .

@TheHexperience Жыл бұрын

The second switch picked up a DHCP address from the default vlan. I need it to get an address from the fortilink subnet. How? Cheers!!

@danimoosakhan 4 ай бұрын

Can I create a LAG across multiple FortiSwitch aka MC-LAG for redundancy? For example, I want to connect my server to multiple FortiSwitch with LACP LAG for redundancy. If yes, how can I achieve that on the FortiSwitch side?

@tothepointfortinet3823 4 ай бұрын

Check out this video which shows how to configure MCLAG: kzfaq.info/get/bejne/hdaWm7Sp0Lfdn5s.html After MCLAG is configured, then I assume your server can bond links with LACP? In which case, you go to WiFi & Switch Controller > FortiSwitch Ports > Trunk and Create New Trunk Group, select ports on both FortiSwitch MCLAG members