FortiSwitch-5003A TM System Guide A detailed guide to the FortiSwitch-5003A system. This FortiSwitch-5003A System Guide describes the FortiSwitch-5003A hardware features, how to install the FortiSwitch-5003A board in a FortiGate-5000 series chassis, and how to configure the FortiSwitch-5003A system. The most recent versions of this and all FortiGate-5000 series documents are available from the FortiGate-5000 page of the Fortinet Technical Documentation web site (http://docs.forticare.com).
Warnings and cautions Only trained and qualified personnel should be allowed to install or maintain FortiGate-5000 series equipment. Read and comply with all warnings, cautions and notices in this document. • • • • • • • • • ! CAUTION: Risk of Explosion if Battery is replaced by an Incorrect Type. Dispose of Used Batteries According to the Instructions.
Contents Contents Warnings and cautions ..................................................................................... 2 FortiSwitch-5003A system ................................................ 5 Front panel LEDs and connectors ................................................................... 6 LEDs ............................................................................................................. 7 Base channel interfaces ...............................................................
Contents 4 FortiSwitch-5003A System Guide 01-30000-77803-20080917
FortiSwitch-5003A system FortiSwitch-5003A system The FortiSwitch-5003A board provides 10/1-gigabit fabric backplane channel layer-2 switching and 1-gigabit base backplane channel layer-2 switching in a dual star architecture for the FortiGate-5140 and FortiGate-5050 chassis. The FortiSwitch-5003A board provides a total capacity of 200 Gigabits per second (Gbps) throughput. The FortiGate-5140 chassis is a 14-slot ATCA chassis and the FortiGate-5050 chassis is a 5-slot ATCA chassis.
Front panel LEDs and connectors FortiSwitch-5003A system Figure 1: FortiSwitch-5003A front panel Base Network Activity LEDs RJ-45 COM Port Fabric Network Activity LEDs B1 B2 Base 1G Copper 14/F8 F7 F6 F5 F4 F3 F2 F1 Fabric 10G Optical or Copper SFP Retention Screw OOS Healthy Fault Extraction LED LED LED Lever Reset MGMT 1G Active Switch Copper LED Interface BASE 10G Optical or Copper SFP Retention Screw Hot Swap Extraction LED Lever • One front panel base backplane 10-gigabit optical or copper SF
FortiSwitch-5003A system Front panel LEDs and connectors LEDs Table 1 lists and describes the FortiSwitch-5003A front panel LEDs. Table 1: FortiSwitch-5003A front panel LEDs and switches LED State OOS (Out of Service) Off Normal operation. Red Out of service. The LED turns on if the FortiSwitch-5003A board fails. The LED may also flash briefly when the board is powering on. Green The FortiSwitch-5003A board is powered on and operating normally. Yellow Caution status.
Front panel LEDs and connectors FortiSwitch-5003A system Table 1: FortiSwitch-5003A front panel LEDs and switches (Continued) LED BASE 10G, 14/F8, F7, F6, F5, F4, F3, F2, F1 (Base and Fabric 10 gigabit LEDs) HS (Hot Swap) State Description Solid Green Indicates this interface is connected to a 10-gigabit network device with the correct cable and the attached network device has power. Blinking Green Indicates 10-gigabit network traffic on this interface. Off No link.
FortiSwitch-5003A system Front panel LEDs and connectors Table 2: Base channel interfaces and network activity LEDs Interface Name Description B1 and B2 Front panel gigabit base channel interfaces B1 and B2. Use these interfaces to connect your network to the base channel, to connect base channel 1 to base channel 2, or to connect a base channel on one chassis to a base channel on another chassis. BASE 10G Front panel 10-gigabit base channel interface.
FortiSwitch-5003A configurations FortiSwitch-5003A system Table 4: Fabric network activity LEDs Fabric network activity LED Interface or connection 2/1 Fabric channel connection between fabric channel 1 and fabric channel 2. This LED is lit if there are two FortiSwitch-5003A boards installed in the chassis to indicate fabric backplane communication between them. 3 to 13 Fabric backplane connection to FortiGate-5000 boards in chassis slots 3 to 13.
FortiSwitch-5003A system FortiSwitch-5003A configurations Figure 4: FortiSwitch-5003A base channel 1 HA heartbeat communication 5 4 3 Base channel 1 HA Heartbeat Communication 2 POWER Hot Swap ETH0 Service STATUS 5000SM 10/100 link/Act 10/100 link/Act SERIAL 2 RESET SERIAL 1 ETH0 ETH1 ALARM 5050SAP Hot Swap ETH0 Service 5000SM 10/100 link/Act 10/100 link/Act STATUS 2 ETH0 ETH1 SMC RESET 1 SMC 1 Base and fabric 10-gigabit switching within a chassis One FortiGate-RTM-XB2 provides 10
FortiSwitch-5003A configurations FortiSwitch-5003A system Layer-2 link aggregation and redundancy configurations The FortiSwitch-5003A board supports 802.3ad layer-2 link aggregation, 802.1q VLANs, and 802.1s Multi-Spanning Tree Protocol (MTSP) for the fabric channels. You can use these features to configure link aggregation and support redundant FortiSwitch-5003A switch configurations to distribute traffic to multiple FortiGate-5000 boards.
Hardware installation Setting the FortiSwitch-5003A configuration switch Hardware installation Before use, the FortiSwitch-5003A module must be correctly inserted into the first or second hub/switch fabric slot of an Advanced Telecommunications Computing Architecture (ACTA) chassis such as the FortiGate-5140 or FortiGate-5050. Before inserting the board into a chassis you should make sure the configuration switch is set correctly.
Setting the FortiSwitch-5003A configuration switch Hardware installation To change or verify the SW3 switch settings To complete this procedure, you need: ! • A FortiSwitch-5003A board • A tool for changing the SW3 switch setting (optional) • An electrostatic discharge (ESD) preventive wrist strap with connection cord Caution: FortiSwitch-5003A boards must be protected from static discharge and physical shock. Only handle or work with FortiSwitch-5003A boards at a static-free workstation.
Hardware installation FortiSwitch-5003A mounting components FortiSwitch-5003A mounting components To install a FortiSwitch-5003A board you slide the board into a hub/switch fabric slot in the front of an ATCA chassis and then use the mounting components to lock the board into place in the slot. When locked into place and positioned correctly the board front panel is flush with the chassis front panel. The board is also connected to the chassis backplane.
Inserting a FortiSwitch-5003A board Hardware installation Inserting a FortiSwitch-5003A board The FortiSwitch-5003A board must be fully installed in a chassis slot, with the handles closed and locked and retention screws fully tightened for the FortiSwitch-5003A board to receive power and operate normally. If the FortiSwitch-5003A board is not receiving power, the HS LED glows solid blue and all other LEDs remain off. See “Front panel LEDs and connectors” on page 6.
Hardware installation Inserting a FortiSwitch-5003A board ! Caution: To avoid damaging the lock, make sure you squeeze the handles fully to unlock them before opening. The handles should pop easily out of the board front panel. Alignment Pin Alignment Pin Handle Open Lock Handle 6 Insert the FortiSwitch-5003A board into the empty slot in the chassis. 7 Carefully guide the board into the chassis using the rails in the slot.
Removing a FortiSwitch-5003A board 10 Hardware installation Once the board is inserted correctly, fully tighten the retention screws to lock the FortiSwitch-5003A board into position in the chassis slot. Retention Screw Tighten Removing a FortiSwitch-5003A board The following procedure describes how to correctly use the FortiSwitch-5003A mounting components described in “FortiSwitch-5003A mounting components” on page 15 to remove a FortiSwitch-5003A board from an ATCA chassis slot.
Hardware installation Removing a FortiSwitch-5003A board 3 Fully loosen the FortiSwitch-5003A retention screws. Retention Screw Loosen 4 Unlock the handles by squeezing the handle locks. 5 Open the handles to their fully open positions. ! Caution: To avoid damaging the lock, make sure you squeeze the handles fully to unlock them before opening. The handles should pop easily out of the board front panel.
Resetting a FortiSwitch-5003A board Hardware installation Resetting a FortiSwitch-5003A board You can use the front panel reset switch to cycle the power and reset the FortiSwitch-5003A board without ejecting the board from its slot. Press and hold the reset switch for three seconds to restart the board. For the location of the reset switch, see “The FortiSwitch-5003A board includes the following features:” on page 5.
Quick Configuration Guide Registering your Fortinet product Quick Configuration Guide This section is a quick start guide to connecting and configuring a FortiSwitch-5003A board. Before using this chapter, your FortiGate-5000 series or compatible ATCA chassis should be mounted and connected to your power system. In addition, your FortiSwitch-5003A board should be inserted into the chassis.
Basic configuration Quick Configuration Guide Note: At any time during the configuration process, if you run into problems, you can reset the FortiSwitch-5003A board to the factory defaults and start over. From the CLI enter execute factory-reset. Basic configuration 1 Use the serial cable supplied with your FortiSwitch-5003A board to connect the front panel RJ-45 COM port to the management computer serial port. You can also connect to the CLI using an SSH or Telnet connection to the MGMT interface.
Quick Configuration Guide Upgrading FortiSwitch-5003A firmware end See the FortiGate-5000 Backplane Communication Guide for more information. Upgrading FortiSwitch-5003A firmware Fortinet periodically updates the FortiSwitch-5003A FortiOS firmware to include enhancements and address issues. After you have registered your FortiSwitch-5003A security system (see “Registering your Fortinet product” on page 21) you can download FortiSwitch-5003A firmware from the support web site http://support.fortinet.com.
Additional configuration Quick Configuration Guide If you are using the FortiSwitch-5003A system for link aggregation or just to pass VLANs you need to use the config switch fabric-channel command.
For more information Fortinet documentation For more information Support for your Fortinet product is available as online help from within the web-based manager, from the Tools and Documentation CD included with the product, on the Fortinet Technical Documentation web site, from the Fortinet Knowledge Center web site, as well as from Fortinet Technical Support.
© Copyright 2008 Fortinet, Inc. All rights reserved. No part of this publication including text, examples, diagrams or illustrations may be reproduced, transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical or otherwise, for any purpose, without prior written permission of Fortinet, Inc.
