4. How to configure Aggregate Interfaces in Fortigate Firewall

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hello everyone and welcome again to my YouTube channel today we are going to do the aggregate interface configuration in 4ate firewall so what is aggregate interface aggregate interface is like the name itself says it it's like aggregating multiple interface over it so we are having two protocols in aggregation uh like if I talk in terms of Cisco okay aggregate is like either Channel only we are having PP and LSP but p p is a Cisco propriety protocol so we cannot use use it over here and we can use LSP okay so what I've done I have done the configuration on the switch end I will show you uh I will show you the configuration [Music] channel one okay this is the configuration now I will show you the configuration on the Appling interfaces okay okay this is the configuration okay Channel group one mode active like which we are calling our Port Channel under this interfaces first we are configuring the port Channel okay and after that we are calling those Port channel in this interfaces okay so that this interface will come under the port channel one okay active and passive are the two modes in lscp since LSP is open standard I'm using it over here so that our Port channel will come or between the switch and the 48 firewall so act there are two modes active and passive so if you keep uh active active on the both ends one on switch and one on the firewall the P the the port channel will come up but if you keep passive passive on both the ends report channel will not come up and if you keep active on one end and passive on the other end it will come up okay now I will show you the uh firewall configuration you have to go under an interface create an interface I will say aggregate uh name will be also aggregate 802.3 ad this is the I standard okay and if if you want to Define the vrf ID okay you can Define it over here but we don't have such kind of configuration over here uh so you know it's not required now I will configure the interface which are coming the two and three now I want the IPO over here similar 10.1.1 okay now I will configure the htps SS such ping that I will configure the DHCP server okay and and I'll click on okay if you want to if you are having multiple ether channels then you can create that well as that as well so for example you I want to create an ether Channel okay I give name as 1 2 three okay now I will create an like uh if you like if you want to create an for channel sub interface then that is also possible I okay but for that you have to create a normal Port Channel and under that Port Channel you have to call that mult the the the other Port channels okay that video I will cover some other day okay let's not now focus on that topic now I'll click here cancel basically what I was telling like if you want to if you are having in multiple ether channel the multiple interfaces and you want to create the multiple V lanss okay and you want your 4ate firewall 2B and L3 device then you have to create a normal ether Channel and after that in that ether Channel you have to call that multiple ether channels I will create a next video for that now let's focus on our aggregating TOS yeah if you go and switch the port channel will be up on show your Channel [Music] somebody see it's up now what I'll do I'll uh click on firewall policies because this is a firewall unless and until it will not work I'll give his name as one agregate interface van you want to see you can see over here water interface are coming under aggregate for two and three destination will be also all and I'll click on all over here I'll click on this is fine similarly the second one all your night is not required now we will do the testing oh static route is there static route is still pending Network static route I know my static route the Gateway so I'll know it so I'll directly configure 19 to 168 0.1 one and now we will do the testing from this PC whether it's getting IP or not ipcp it will get IP 100% it will also able to Ping the internet [Music] I think I missed something let me check the gway reachability able to reach the Gateway how about the okay I think there is some mistake in the firewall polies okay Agate to landar Let's enable the nting over here as well let me check working or not I think that is not an [Music] issue okay okay okay okay okay see V for here we don't require nothing I got the concept it was a silly mistake from mind if you guys see I have given the outgoing interface from the agregate as Port four okay but it's actually Port one p okay now I'll click on okay now it will work see see this was another thing but the whole the idea of this video is we can create an ether Channel over here okay by combining I think in uh the lscp you can combine 16 interfaces okay and out of those 16 interfaces eight will be in active and the remaining eight will be in the standby this is how you can do the aggregate interface configuration in 4ate fire I hope you guys would have liked this video stay tuned for the upcoming videos thank you

Info

Channel: Lab It UP

Views: 221

Rating: undefined out of 5

Keywords: #SecureYourNetwork, #fortigate, #firewall, #Networksecurtiy

Id: 7-mpi3Ja0no

Channel Id: undefined

Length: 8min 31sec (511 seconds)

Published: Sat Jan 06 2024