Configuring VLANs

The following table shows you how to perform VLAN tasks using the CLI and the GUI:

Task	Command / Procedure
Add a VLAN	CLI	eqcli > vlan name vid VLAN_ID [parameters]
Add a VLAN	GUI	1. Right-click VLANs in the left frame. 2. Select Add VLAN from the popup command menu. 3. Enter a VLAN Name and VID (VLAN ID). 4. Click Commit.
Remove a VLAN	CLI	eqcli > no vlan name
Remove a VLAN	GUI	1. Expand the VLANs node in the left frame. 2. Right-click the name of the VLAN you want to delete. 3. Select Delete VLAN from the pop up command menu. 4. Click Confirm.
Modify a VLAN	CLI	eqcli > vlan name [parameters]
Modify a VLAN	GUI	1. Expand the VLANs node in the left frame. 2. Click the name of the VLAN you want to modify. The VLAN configuration tabs appear in the right frame. 3. Edit the VLAN configuration using the controls on each tab. Click Commit before navigating away from a tab to apply your changes.
Display summary of all VLANs	CLI	eqcli > show vlan
Display summary of all VLANs	GUI	Click the VLANs node in the left frame object tree.
Display details for a VLAN	CLI	eqcli > show vlan name
Display details for a VLAN	GUI	1. Expand the VLANs node in the left frame. 2. Click a VLAN name to display the configuration tabs for that VLAN in the right frame.

VLAN Port Assignment Using the CLI

Configure a VLAN using the CLI as follows:

Create a VLAN and subnet over which you can log into FortiADC. If you want to license FortiADConline, the subnet you create should also be able to reach the Internet.

To create a VLAN , enter a command like the following:

eqcli > vlan vlname vid vlan_ID

Replace vlname with the VLAN name and vlan_ID with the VLAN ID number (1- 4094). If you are using untagged VLANs (common in many sites), the VLAN ID can be any number not used on another VLAN. If you are using tagged VLANs, check with your network Administrator for the correct VLAN ID to specify.

Add a subnet to the VLAN you just created. You’ll need to specify the following:

The subnet IP address, which is the ADCs address on this network. It must be an IPv4 or IPv6 address in CIDR (Classless Inter-Domain Routing) format (e.g., 172.16.0.123/21).
The default route IP address for the subnet gateway. This is an unadorned IP address (e.g., 172.16.0.1).
The HTTP and SSH services, so that you can log in to the Graphical User Interface (GUI) and Command Line Interface (CLI) on this subnet.

Enter the following command, all on one line:

eqcli > vlan vlname subnet subnet name ip CIDR format IP address route dest_cidr src src cidr gw ip_addr

In the command above,vlname is the VLAN name from the previous step, subnet name is the name of the subnet, ipis the CIDR format IP address, routeis the destination network in CIDR notation, src is the source network in CIDR notation (optional), and gw is IP address of the gateway for the route.

Refer to the webhelp if you need more help setting up your initial VLAN and subnet: go to www.coyotepoint.com, move your mouse over the Support link near the top of the screen, and choose Manuals from the drop down list.

Associate an interface instance with the VLAN. Here we assume that you are using the port labelled ‘1’ on the front panel. Enter one of the following commands, depending on whether the VLAN you created above is untagged or tagged (ask your network administrator if you are unsure):

eqcli > vlan vlname ifi ge01 type untagged

eqcli > vlan vlname ifi ge01 type tagged

Connect the port or ports you configured on the VLAN to the network using a standard Ethernet cable with RJ-45 connectors. You should now be able to use the "ping" command from a workstation on the same subnet to reach the subnet IP address configured above.