Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ponder
New Contributor III

Created on ‎06-20-2016 11:06 AM

Switch Ports - 60D

Hello,

 

I could do with some more help 

 

I have a 60D, LAN side consists of 3 ports configured as a hardware switch.  I am having a speed duplex issue on one port, I need to force one of the port to full/10.  (for some old device on the LAN)

 

The other ports negotiate correctly at 100/full & 1000/full as needed.

 

I checked the knowledge base and it seems I can only configure speed/duplex on switches via system global?  I know I can't edit the port individually, it gives an error - 'conflicts with names used by the switch interface hardware'

 

Can I not edit individual ports when they are part of a switch?  This seems backwards to me, or am I missing something fundamental?

 

Thanks,

Ponder.

7056
0 Kudos
8 REPLIES 8
omega
New Contributor

Created on ‎06-21-2016 12:25 AM

Can't you just give all Ports settings to the set command (e.g. ... 10half auto 100full)

3060
0 Kudos
ponder
New Contributor III
In response to omega

Created on ‎06-21-2016 03:53 AM

omega,

 

It won't let me do that as the ports are part of a switch - it gives the error -> 'conflicts with names used by the switch interface hardware' <- when trying to edit the specific interface I need to change.

 

Thanks,

Ponder.

3060
0 Kudos
omega
New Contributor
In response to ponder

Created on ‎06-21-2016 04:22 AM

I meant you edit the switch-interface and instead of giving one argument to the set command you give 3 arguments to it (a list of settings for the ports).

3060
0 Kudos
ede_pfau
SuperUser
SuperUser
In response to omega

Created on ‎06-21-2016 04:56 AM

In order to configure a port individually you need to separate it from the switch (virtual port). But maybe you can add it back afterwards. Never tried any of this though.


Ede

"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
3060
0 Kudos
ponder
New Contributor III
In response to ede_pfau

Created on ‎06-24-2016 04:15 AM

@omega - That won't help me as one of the sets of speed/duplex is correct for one of the ports so it needs this (full/100), but the port I want to force to 10 is negotiating at the same (full/100).  For what ever reason the device will only pass traffic when forced to 10/full.

 

@ede_pfau - I tried that, when you add it back it removes the speed/duplex config.

 

I still don't understand why I can't just edit the port individually when it is part of a switch.

 

3060
0 Kudos
ede_pfau
SuperUser
SuperUser
In response to ponder

Created on ‎06-24-2016 05:29 AM

It is like it is, take it as a fact. The FGT is a highly flexible machine but there are limits.

Can you think of a workaround?


Ede

"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
3060
0 Kudos
rwpatterson
Valued Contributor III
In response to ede_pfau

Created on ‎06-24-2016 05:39 AM

Get a cheap NetGear 5 port switch and daisy chain the two. If the unit only speaks at 10/full, then the latency certainly won't be an issue...

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
3060
0 Kudos
ponder
New Contributor III
In response to rwpatterson

Created on ‎06-27-2016 07:32 AM

Yes, I think I am going to have to do something like that.

 

Thanks for your help everyone.

3060
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.