Ethernet Switching
Highlighted
Ethernet Switching

Connecting Fortigate to EX2200

‎01-15-2019 07:37 AM

Hey guys currently trying to connect a Fortigate that I've configured with 3 vlans on one port to a Juniper switch. Then have those vlans on one port.

 

Little background;

They have fortigate edge devices that connect to the juniper ex2200 which would be used to provide ethernet to users. I would be adding in a few FortiAPs that would be connecting to the Juniper to provide wifi for users in three different VLANs on different SSIDs.

 

Thanks

3 REPLIES 3
Highlighted
Ethernet Switching
Solution
Accepted by topic author ksampson
‎01-16-2019 10:41 AM

Re: Connecting Fortigate to EX2200

‎01-15-2019 03:36 PM

A simple trunk port would look like this is all three a tagged vlans.

 

---setup trunk port

set interfaces ge-0/0/0 description "trunk to AP"
set interfaces ge-0/0/0 unit 0 family ethernet-switching port-mode trunk

 

---create the vlans

set vlans ssid1 vlan-id 10
set vlans ssid1 interface ge-0/0/0.0

set vlans ssid1 vlan-id 20
set vlans ssid1 interface ge-0/0/0.0

set vlans ssid1 vlan-id 30
set vlans ssid1 interface ge-0/0/0.0

 

If you also have an untagged mgmt vlan

--the vlan setup does not include the trunk port but will be used by access ports that are on this same vlan

 

set vlans mgmtvlan vlan-id 40

--add the vlan tag as "native" untagged to the trunk port

set interfaces ge-0/0/0 unit 0 family ethernet-switching native-vlan-id 40

 

---client untagged access ports

--create the access port

set interfaces ge-0/0/1 description "my client"
set interfaces ge-0/0/1 unit 0 family ethernet-switching

 

---assign to the desired vlan

set vlans ssid1 interface ge-0/0/1.0

 

Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home
Highlighted
Ethernet Switching

Re: Connecting Fortigate to EX2200

‎01-16-2019 06:12 AM

Thanks i got that functional.

 

The fortigate traffic still isnt hitting the fortiap. As in the fortiap can not connect to the controller.

 

Can you assist with this?

 

https://imgur.com/a/eFHUwfZ

Shows current configures on Fortigate

 

Im trying to connect Fortigate 81-POE to a Juniper ex2200 for wifi. Where the Forti APs would connect thru the juniper for access the fortigate for wifi.

 

Highlighted
Ethernet Switching

Re: Connecting Fortigate to EX2200

‎01-16-2019 04:16 PM

I can't tell from the images how the Fortigate port connecting to the EX2200 is configured. 

I see 4 ip subnets with 3 associated to SSID so I assume the 4th by port 11 is the mgmt vlan.

 

Is this an AP with a vlan trunk port for the SSID and untagged mgmt traffic?

This would be a typical setup which would be using the 3 vlans associated to tags and the 4th via the native vlan setup.

 

Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home
Feedback