Layer 2 Interfaces
This chapter provides information about configuring FortiSwitch layer 2 interfaces.
Configuring Switched Interfaces
Default configuration will suffice for regular switch ports. The default VLANis set to 1, STPis enabled, and all
other optional capabilities are disabled.
You can configure optional capabilities such as Loop Guard, IEEE 802.1x authentication, and Private VLAN.
These capabilities are covered in subsequent sections of this document.
Using the web-based manager:
1. Go to Switch > Interface > Interface
2. Select the port to update and click Edit.
3. Enter a new value for native VLAN.
Using the CLI:
config switch interface
set native-vlan <vlan>
set allowed-vlans <vlan> [<vlan>] [<vlan> - <vlan>]
set stp-state {enabled | disabled}
set edge-port {enabled | disabled}
Viewing Interface Configuration
Display port configuration using following command:
show
switch
interface
<port>
Display port settings using following command:
config switch interface
get
Fortinet Loop Guard
A loop in a layer 2 network results in broadcast storms that have far-reaching and unwanted effects. Fortinet Loop
Guard helps to prevent loops. When Loop Guard is enabled on a switch port, the port monitors its subtending
network for any downstream loops. If a port detects a loop,the system takes the port out of service to protect the
overall network.
30 FortiSwitchOS-3.2.0
