2013年7月18日 星期四

fortigate switch mode 改 interface mde 使用CLI

80C有六個internal port 其實是可以把它分開各個獨立的介面

使用下面指令

test80C # config system  global


test80C (global) # set internal-switch-mode
interface    interface
switch       switch

test80C (global) # set internal-switch-mode interface

test80C (global) # end
Changing switch mode will reboot the system!
Do you want to continue? (y/n)y

Interface internal is in use
attribute set operator error, -23, discard the setting
Command fail. Return code -23
怎麼會出先現已使用中的問題,其實是80C internal port 有使用DHCP SERVER跟policy 有使用到 internal port 可以用下面指令查到

test80C # diagnose  sys  checkused  system.interface.name internal
entry used by table system.dhcp.server:id '1'
entry used by child table srcintf:name 'internal' of table firewall.policy:policyid '1'

查到後就先把它刪除吧
test80C # config  firewall policy

test80C (policy) # delete  1

test80C (policy) # end

test80C # config system dhcp server

test80C (server) # delete 1

test80C (server) # end

在重下指令就可以收工了

test80C (global) # set internal-switch-mode interface

test80C (global) # end
Changing switch mode will reboot the system!
Do you want to continue? (y/n)

test80C #

The system is going down NOW !!

Please stand by while rebooting the system.



2 則留言:

  1. 你好.想問你我有三條100/100的光纖網路80c這台只有wan1 wan2 可以用其他的port改嗎!??感謝

    回覆刪除