Fabric gigabit switching to the network | FortiGate-5140 fabric backplane communication |
Figure 12: Fabric channel 2 connected to an internal network and fabric channel 1 connected to an external network
Internal Network
Internal network connected to the F7 front panel fabric interface to connect to fabric channel 2
| | | Fabric channel 2 | | | | | | | |
| | | data communication | | | | | | |
| | | | | | | | 5140SAP | | | SERIAL 1 | SERIAL 2 | ALARM | |
| | | | | | 5140 | | CAL | R1 | R3 | | | | |
| | | | | | | ET | | | | |
| | | | | | | RES | CRITI MAJORMINOR USE | USER2 USE | | | | |
13 | 11 | 9 | 7 | 5 | 3 | 1 | 2 | 4 | | 6 | 8 | 10 | 12 | 14 |
External network connected to the F1 front panel fabric interface to connect to fabric channel 1
External
Network
FILTER
0 FAN TRAY | 1 FAN TRAY | 2 FAN TRAY |
Fabric channel 1 data communication
For the FortiGate-5001A boards to use the fabric channels for data communication you must show backplane interfaces on the FortiGate web-based manager and then configure firewall polices and routing for the fabric1 and fabric2 interfaces.
If the data traffic contains VLAN-tagged packets, you must add the VLAN tags to the FortiSwitch-5003A interfaces that will handle the VLAN-tagged traffic. For example, to allow VLAN tags 201 to 210 on slots 6, 8, and 10 and the F1 front panel interface, from the FortiSwitch-5003A CLI enter:
config switch fabric-channel interface edit "slot-6"
set allowed-vlans 1,201-210 next
edit "slot-8"
set allowed-vlans 1,201-210 next
edit "slot-10"
set allowed-vlans 1,201-210 next
edit "f1"
set allowed-vlans 1,201-210 end
| FortiSwitch-5003A and 5003 Fabric and Base Backplane Communications Guide |
30 | 01-30000-85717-20081205 |
