FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mzainuddinahm
Article Id 195894

Description

 

This article explains how to change the port speed of a FortiGate interface via CLI.


Scope

Solution.

Configuration.

 

  1. The default value for all interfaces is auto-negotiate. This should automatically set the speed for that port appropriate to the speed set on the other network hardware. If this does not happen, edit the configuration using the following CLI commands:
 
config system interface
edit <interface-name>
set speed <1000full/10000half/100full/100half/10full/10half/auto>
end
 
Note that only some models support gigabit Ethernet speeds.
The unit attached should match the settings. If the FortiGate unit is set to 100Full, the unit on the end should also be set to 100Full.
 
  1. The interface speed.
 
  • Auto, the default speed. The interface uses auto-negotiation to determine the connection speed. Change the speed only if the interface is connected to a unit that does not support auto-negotiation.
  • 10full, 10 Mbps, full duplex.
  • 10half, 10 Mbps, half duplex.
  • 100full, 100 Mbps, full duplex.
  • 100half, 100 Mbps, half duplex.
  • 1000full, 1000 Mbps, full duplex.
  • 1000half, 1000 Mbps, half duplex.
 
Speed options vary for different models and interfaces. 
Enter a space and a '?' after the speed keyword to display a list of speeds available for your model and interface.
 
It is not possible to change the speed for interfaces that are 4-port switches. 
This includes the internal interfaces of FortiGate models 60, 60M, 100A, 200A, and FortiWiFi-60. 
This also includes the LAN interface of the FortiGate-500A.
 
  1. However, there is a command in config system global that allows to set the internal switch speed. 
 
To configure this use the following CLI commands.
 
Note:
The below command is only available up to FortiOS 5.4.x. 
 
config system global
set internal-switch-speed
 
100full    100M Full
100half    100M half
10full     10M Full
10half     10M half
auto       auto
 
  1. If the ports are part of internal hardware switch, then you can change it using 'config system virtual-switch' 
 
config system virtual-switch
edit <name>
config port
edit <name>
set speed [auto|10full|10half|…]
end
 

Troubleshooting.

 

For interface diagnostics:
 
diagnose hardware deviceinfo nic <interface-name>

Refer to the related article 'Troubleshooting Tip: FortiGate interface error counters' for more information on understanding the output of this diagnostic command.

 

Related articles: