Switching

 View Only
last person joined: 13 hours ago 

Ask questions and share experiences about EX and QFX portfolios and all switching solutions across your data center, campus, and branch locations.

  • 1.  Connecting Fortigate to EX2200

    Posted 01-15-2019 07:38

    Hey guys currently trying to connect a Fortigate that I've configured with 3 vlans on one port to a Juniper switch. Then have those vlans on one port.

     

    Little background;

    They have fortigate edge devices that connect to the juniper ex2200 which would be used to provide ethernet to users. I would be adding in a few FortiAPs that would be connecting to the Juniper to provide wifi for users in three different VLANs on different SSIDs.

     

    Thanks



  • 2.  RE: Connecting Fortigate to EX2200
    Best Answer

    Posted 01-15-2019 15:36

    A simple trunk port would look like this is all three a tagged vlans.

     

    ---setup trunk port

    set interfaces ge-0/0/0 description "trunk to AP"
    set interfaces ge-0/0/0 unit 0 family ethernet-switching port-mode trunk

     

    ---create the vlans

    set vlans ssid1 vlan-id 10
    set vlans ssid1 interface ge-0/0/0.0

    set vlans ssid1 vlan-id 20
    set vlans ssid1 interface ge-0/0/0.0

    set vlans ssid1 vlan-id 30
    set vlans ssid1 interface ge-0/0/0.0

     

    If you also have an untagged mgmt vlan

    --the vlan setup does not include the trunk port but will be used by access ports that are on this same vlan

     

    set vlans mgmtvlan vlan-id 40

    --add the vlan tag as "native" untagged to the trunk port

    set interfaces ge-0/0/0 unit 0 family ethernet-switching native-vlan-id 40

     

    ---client untagged access ports

    --create the access port

    set interfaces ge-0/0/1 description "my client"
    set interfaces ge-0/0/1 unit 0 family ethernet-switching

     

    ---assign to the desired vlan

    set vlans ssid1 interface ge-0/0/1.0

     



  • 3.  RE: Connecting Fortigate to EX2200

    Posted 01-16-2019 06:13

    Thanks i got that functional.

     

    The fortigate traffic still isnt hitting the fortiap. As in the fortiap can not connect to the controller.

     

    Can you assist with this?

     

    https://imgur.com/a/eFHUwfZ

    Shows current configures on Fortigate

     

    Im trying to connect Fortigate 81-POE to a Juniper ex2200 for wifi. Where the Forti APs would connect thru the juniper for access the fortigate for wifi.

     



  • 4.  RE: Connecting Fortigate to EX2200

    Posted 01-16-2019 16:17

    I can't tell from the images how the Fortigate port connecting to the EX2200 is configured. 

    I see 4 ip subnets with 3 associated to SSID so I assume the 4th by port 11 is the mgmt vlan.

     

    Is this an AP with a vlan trunk port for the SSID and untagged mgmt traffic?

    This would be a typical setup which would be using the 3 vlans associated to tags and the 4th via the native vlan setup.