Description
FortiSwitch (FSW) ports in Link Mode are added to Topology by reading a list built by the managing FortiGate (FGT).
If ports are removed from the FGT list, they are removed from Topology and all port groups upon the next read of that list. Consequently, ports are removed from enforcement unexpectedly.
Port removal can occur under the following conditions:
- The FSW is unreachable and Resync Interfaces is run against the managing FGT model in Topology. This function can be run manually by right-clicking on the FGT model or scheduled through System > Scheduler using the Resynchronize Device task.
- The FSW is unreachable and Read VLANs is run against the managing FGT model in Topology. This function can be run manually by right-clicking on the model and selecting Network Access/VLANs.
- The FSW is rebooted (this has been reported by some customers, however, is an inconsistent behavior).
Scope
Version: 8.3 and above
Solution
Workaround:
1) Select managing FortiGate model in Topology and select Resync Interfaces.
2) Re-add the ports to the proper port groups.
3) Run L2 poll to re-evaluate connected endpoints to ensure they are placed in the proper VLANs.
Solution: Currently under investigation.