We have a Stack - 1 (SW-ACESSO2, SW-ACESSO3, SW-ACESSO1) and we are using port 47 from sw1 and sw2 to lacp to one Fortigate (port 1 and port 2). It seems to work well for some days but we lost connectivity Stack - 1 (SW-ACESSO2, SW-ACESSO3, SW-ACESSO1) lost connectivity on Aug 13 from 00:46 to 07:15 (UTC-3). The way to get connectivity to be restored was changing LACP from Fortigate side (add/del one of two ports). So, I would like to confirm that LACP is properly configured on both sides. LACP on Meraki side: Aggregation group AGGR/0 (SW-ACESSO1 47 and SW-ACESSO2 47) Port status Enabled Type Trunk Native VLAN 1 Allowed VLANs 2-4094 Access policy Open Link negotiation Auto negotiate RSTP Enabled Port schedule Unscheduled Port isolation Disabled Trusted DAI Disabled UDLD Alert only Tags none PoE Enabled Port mirroring Not mirroring traffic LACP Fortigate side: FW-100F-KAPLAN-MATRIZ-RS (LAG-LAN-TELECOM) # show config system interface edit "LAG-LAN-TELECOM" set vdom "root" set allowaccess ping snmp set type aggregate set member "port1 port2" set device-identification enable set device-user-identification disable set lldp-reception enable set lldp-transmission enable set monitor-bandwidth enable set snmp-index 11 next end From Fortigate, we can see distribution algorithm: L4 LACP mode: active LACP speed: slow LACP HA: enable LACP flags: (A|P)(S|F)(A|I)(I|O)(E|D)(E|D) (A|P) - LACP mode is Active or Passive (S|F) - LACP speed is Slow or Fast (A|I) - Aggregatable or Individual (I|O) - Port In sync or Out of sync (E|D) - Frame collection is Enabled or Disabled (E|D) - Frame distribution is Enabled or Disabled status: up LACP state: established actor state: ASAIEE actor port number/key/priority: 2 17 255 partner state: ASAIEE Is there anything wrong with this config? Regards, Rafael.
... View more
