Fortinet 5003 Switch User Manual


 
FortiGate-5050 fabric backplane communication Fabric gigabit switching within a chassis
FortiSwitch-5003A and 5003 Fabric and Base Backplane Communications Guide
01-30000-85717-20081205 49
For the FortiGate-5001A boards to use the fabric channel 2 for data
communication you must show backplane interfaces on the FortiGate-5001A
web-based manager and then configure firewall polices and routing for the fabric2
interfaces.
If the data traffic contains VLAN-tagged packets, you must add the VLAN tags to
the FortiSwitch-5003A interfaces that will handle the VLAN-tagged traffic. For
example, to allow VLAN tag 34 on slot 5 from the FortiSwitch-5003A CLI enter:
config switch fabric-channel interface
edit "slot-5"
set allowed-vlans 1,34
end
For more information about the FortiSwitch-5003A CLI, see “FortiSwitch-5003A
CLI reference” on page 89.
Figure 17 shows a FortiGate-5050 chassis with FortiSwitch-5003A boards in
hub/switch slots 1 and 2 and FortiGate-5001A boards in slots 3, 4, and 5. In this
configuration the FortiSwitch-5003A boards are operating as layer-2 switches for
fabric channels 1 and 2 and the FortiGate-5001A boards are operating as typical
standalone FortiGate units. The FortiGate-5001A boards can use fabric channels
1 and 2 for data communication among the FortiGate boards.
The chassis can be connected to the network using any of the FortiGate-5001A
front panel interfaces. You can also connect FortiSwitch-5003A front panel fabric
interfaces to the network. You can also install FortiGate AMC modules in the
FortiGate-5001A boards and connect the network to the AMC front panel
interfaces. The AMC modules and the network connections are not shown in
Figure 17.
Figure 17: FortiGate-5050 fabric channel 1 and 2 data communication
For the FortiGate-5001A boards to use the fabric channels 1 and 2 for data
communication you must show backplane interfaces on the FortiGate-5001A
web-based manager and then configure firewall polices and routing for the fabric1
and fabric2 interfaces.
1
2
2
3
4
5
SMC
1
SMC
POWER
5050SAP
SERIAL
1
SERIAL
2
ALARM
10/100
link/Act
ETH0
Service
RESET
STATUS
Hot Swap
link/Act
ETH0
ETH1
10/100
5000SM
10/100
link/Act
ETH0
Service
RESET
STATUS
Hot Swap
link/Act
ETH0
ETH1
10/100
5000SM
Fabric channel 2
data communication
Fabric channel 1
data communication