Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
FortiKoala
Staff
Staff

Created on ‎09-27-2018 07:49 AM

Article Id 191625

Technical Note: Will a VLAN switch right away if a MAC Notification trap is received?

Description
When the MAC Notification trap is received from a port where a host connects, will the VLAN be changed right away if the Current VLAN is NOT the correct one, or will it wait for the next L2 Poll?

Scope
Version: All
Solution
L2 Polling collects MAC and connection data (where the MAC address is located on the switch).  MAC notification traps already contain this information.  Therefore, the host is evaluated once the MAC Notification trap is received. 

If the port is enforced, and the current VLAN is not appropriate for the host, the VLAN will switch.

Note:  This behavior may not be consistent if the correct current VLAN information is not accurate.  Such a situation can occur if VLANs were manually changed on the switch itself.  See related KB article below.

For details on configuration traps for MAC Notification, refer to the Fortinet Document Library.


Related Articles

Technical Note: Best practice for manually changing VLANs on managed switches

Labels:
282
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.