Auto Tagging VOIP Phones To Voice VLAN On FortiGate Managed FortiSwitch
Vložit
- čas přidán 8. 09. 2024
- Auto Tagging VOIP Phones To Voice VLAN On FortiGate Managed FortiSwitch
www.fortinetgu...
Buy Hardware: bit.ly/2QZVeqh
Get Consulting: bit.ly/36FinSU
My Other Projects:
Office Of The CISO: bit.ly/3HGMH1o
Packet Llama: bit.ly/3SEX3H4
###### SOCIAL LINKS ######
Twitter: bit.ly/2WXiRAv
Facebook: bit.ly/3eigz4D
Instagram: bit.ly/3cZneAz
######################
Live saver. Struggled setting up my first FortiSwitch and this video outlined all the steps needed to rectify my issue. Kudos to you sir.
Fortinet should be paying you! Thank you so much! This was not at all like Fortigate manual and worked like a charm!
Glad it helped
Can't thank you enough for your videos. Many of our outside offices are transitioning to VOIP and I have been pulling me hair out trying to find/navigate through all the "dials and buttons" to get the voice traffic organized/segmented in and out of our buildings. I really like your approach, it's clean and REPEATEABLE (huge bonus when dealing with multiple sites and hardware models).
One issue that I overlooked while getting VOIP traffic figured out was with locations/sites that I am leveraging SD-WAN. It took me forever to figure out that the SD-WAN SLAs/rules/polices I had set up previous to the VOIP migration were the reason(s) that end users were experiencing sudden voice drops. When the bandwidth/latency/traffic conditions moved out the threshold I had set up for a given ISP/WAN, the firewall would dump the existing voice connection in favor of the "better" opportunity to get in and out of the door.... man did I fell like a moron overlooking that one.
Anyway, I thought it might be a decent topic for you to quickly go over in a future video.
These videos are better then Fortinet's documentation. Hey fortinet, hire this guy to do your documentation videos.
Thanks for the helpful video. It is great. One suggestion would be to pop out the CLI window and move to the other side of the screen so your picture in picture doesn't cover what you're typing.
Thanks for the tip! It's the little things I miss when making these.
BTW your CLI is blocked by your web cam video
Very helpful video! It was a little tricky to see some of the commands with the webcam video blocking it, but it worked like a charm. Thank you!
Truly appreciate your videos! You're a gem for doing these! Keep up the great work!
My first time seeing your videos. Very helpful.
Please also create a qos/dscp video: would be much appreciated, I don’t think there’s a lot of videos that explain this well (on fortigate ). Thanks for your informative videos!
Jump on the band wagon. Your fortinet videos are thorough and very well done. Very much appreciated!
Glad you like them!
Awesome Video, thanks so much, you really helped me out tonight!
This is insanely elaborate to do one simple
Many thanks for the vid, helped a bunch
Thank you for this very informative and useful video.
With reference to convergence - you called it "pass-through" - whereby a PC (Data VLAN) connects to the IP Phone (Voice VLAN), is convergence/pass-through automatic? That is, after doing the voice oriented configs demonstrated in this video, will convergence/pass-through just work? If, no can you demonstrate what will be required additionally to facilitate convergence? thank you.
Hi, is it possible to use the lldp med profile to tag two different brands of phones to two different vlans?
do we do anything with SIP ALG at all? disable? delete first?
how would you access the gui version of LLDP and med-network-policy settings with a switch being managed by a fortigate firewall?
@Fortinet Guru - now try that with Port Security enabled (eg: RADIUS-MAB), the root cause of myself going grey I might add :-)
Sounds like a horrible experience ;-P
FYI.. Running Fortigate 6.0.8.. Fortiswitch Port section would not load after creating the lldp-profile and setting it manually on the ports. It's like the GUI doesn't know how to handle the cli changes. After upgrading the 6.2.7, I was able to gain access back to the FortiSwitch Port section. However, the lldp profile that was created is not available anymore. Furthermore, after creating lldp-profile on 6.2.7, it is not showing up in the list just as it did in your video. Except refreshing isn't helping.
Is it possible to do such a configuration on Fortigate, e.g. 100F or 100D?
40F running 6.0 (latest available for this model) does not have the LLDP profile column.
FG1111 # conf switch-controller managed-switch
FG1111 (managed-switch) # edit S148EP0000000000
FG1111 (S148EP0000000000) # config ports
FG1111 (ports) # edit port10
FG1111 (port10) # set lldp-profile default
FG1111 (port10) # end
FG1111 (S148EP0000000000) # end
Hi Did you try to do LLDP and NAC at the same time with 6.4 ?
Hi, if you have multiple voice vlans with each having individual subnets, do I create a separate llpd profile for each and assign individual voice vlans ?
You would based on what I know of your environment.
Do you have any Fortnite switch iso .... ?