No connection using VLANs over LACP-Portchannel between Fortigate and GS1920-24HPv2

Options
Ribwutz
Ribwutz Posts: 4 image  Freshman Member
in Switch

Hi everyone,

i hope someone can light me up.
Clients connected to VLAN-Interfaces on Switch are not getting assigned ip-addresses,
even with fixed ip-address assigned to client client is not able to reach Firewall using
the portchannel.
Portchannel including VLAN is working properly.
Here is my setup

I'm having a Fortigate FGT80E connected to GS1920-24HPv2 using a LACP-Portchannel.
The Portchannel contains 4 VLANs (IDs 10,2,199,222) it terminates on GS1920 on Ports 23 & 24.
Default-GW & DHCP-Server is for each VLAN the firewall.
I have created the corresponding VLANs on GS1920 and assigned the PVID to the ports i want
to use - VLAN1 has been forbiden on these ports - including the trunk-ports.
LACP-Ports are set to trunking, VLAN1 has been forbidden on assigned LACP-Ports.
I guess there is something i'm missing or i have overseen.
Any help is very much appreciated.

Many thanks to all.

LACP-Status

image.png

VLANs

image.png

My Client is connected to port3 (VLAN10) - for testing i have disabled other VLAN except VLAN1.

image.png

VLAN-Port-Setup - for VLAN10

image.png image.png

VLAN on Fortigate

image.png

Accepted Solution

  • Zyxel_Melen
    Zyxel_Melen Posts: 4,367 image  Zyxel Employee
    Zyxel Certified Network Engineer Level 1 - Switch Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate
    Answer ✓

    Hi @Ribwutz

    Zyxel VLAN setting allows you to define which VLAN in which port should be tagged or untagged. And the VLAN trunking is to forward the unknown VLAN traffic. For those known VLAN, the switch forwards the traffic based on the VLAN setting/table.

    Please add port 23 and 24 in your VLAN setting and set tagged (select the Tx Tagging).

    Zyxel Melen


All Replies

  • Zyxel_Melen
    Zyxel_Melen Posts: 4,367 image  Zyxel Employee
    Zyxel Certified Network Engineer Level 1 - Switch Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate
    Answer ✓

    Hi @Ribwutz

    Zyxel VLAN setting allows you to define which VLAN in which port should be tagged or untagged. And the VLAN trunking is to forward the unknown VLAN traffic. For those known VLAN, the switch forwards the traffic based on the VLAN setting/table.

    Please add port 23 and 24 in your VLAN setting and set tagged (select the Tx Tagging).

    Zyxel Melen


Categories

Switch Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)