Figure 12, Own in – Fortinet 5003 User Manual

FortiSwitch-5003A and 5003 Fabric and Base Backplane Communications Guide

30

01-30000-85717-20081205

Fabric gigabit switching to the network

FortiGate-5140 fabric backplane communication

Figure 12: Fabric channel 2 connected to an internal network and fabric channel 1

connected to an external network

For the FortiGate-5001A boards to use the fabric channels for data
communication you must show backplane interfaces on the FortiGate web-based
manager and then configure firewall polices and routing for the fabric1 and fabric2
interfaces.

If the data traffic contains VLAN-tagged packets, you must add the VLAN tags to
the FortiSwitch-5003A interfaces that will handle the VLAN-tagged traffic. For
example, to allow VLAN tags 201 to 210 on slots 6, 8, and 10 and the F1 front
panel interface, from the FortiSwitch-5003A CLI enter:

config switch fabric-channel interface

edit "slot-6"

set allowed-vlans 1,201-210

next
edit "slot-8"

set allowed-vlans 1,201-210

next
edit "slot-10"

set allowed-vlans 1,201-210

next
edit "f1"

set allowed-vlans 1,201-210

end

Internal Network

FA N T R AY

FA N T R AY

FA N T R AY

13

11

9

7

5

3

1

2

4

6

8

10

12

14

5140

CRITI

CAL

RES

ET

MAJOR MINOR USE

R1

USER2 USE

R3

5140SAP

SERIAL 1

SERIAL 2

ALARM

FILTER

1 2

0

1

2

10/100

link/Act

ETH0

Service

RESET

STATUS

Hot Swap

link/Act

ETH0 ETH1

10/100

5000SM

10/100

link/Act

ETH0

Service

RESET

STATUS

Hot Swap

link/Act

ETH0 ETH1

10/100

5000SM

Fabric channel 1
data communication

Fabric channel 2
data communication

External network connected
to the F1 front panel fabric
interface to connect to
fabric channel 1

Internal network connected
to the F7 front panel fabric
interface to connect to
fabric channel 2

External
Network