Rules for vlan ids, Transparent mode virtual domains and vlans – Fortinet 100A User Manual

68

01-28007-0068-20041203

Fortinet Inc.

Rules for VLAN IDs

System network

Figure 17: FortiGate unit in Transparent mode

Rules for VLAN IDs

In Transparent mode two VLAN subinterfaces added to the same physical interface
cannot have the same VLAN ID. However, you can add two or more VLAN
subinterfaces with the same VLAN IDs to different physical interfaces. There is no
internal connection or link between two VLAN subinterfaces with same VLAN ID. Their
relationship is the same as the relationship between any two FortiGate network
interfaces.

Transparent mode virtual domains and VLANs

VLAN subinterfaces are added to and associated with virtual domains. By default the
FortiGate configuration includes one virtual domain, named root, and you can add as
many VLAN subinterfaces as you require to this virtual domain.

You can add more virtual domains if you want to separate groups of VLAN
subinterfaces into virtual domains. For information on adding and configuring virtual
domains, see

“System virtual domain” on page 131

VLAN

switch

FortiGate unit

operating in

Transparent mode

POWER

VLAN

switch

POWER

Esc

Enter

Internal

VLAN
Trunk

VLAN
Trunk

External

Untagged

packets

VLAN 1

VLAN ID = 100

VLAN 2

VLAN ID = 200

VLAN 3

VLAN ID = 300

Internet

VLAN 1
VLAN 2
VLAN 3

VLAN 1
VLAN 2
VLAN 3

Router