Fortigate 200F with Cisco Nexus - redundancy

Forum|Forum|5 years ago
March 18, 2021
2 replies
10410 views

hello all,

I have two Nexus 9000 switches connected via a vPC Peer Link. Two catalyst stacks are also connected to both NX's via vPC's. How can I be able to have redundant paths between the fortigate and the NX's? Do I set up a "hardware switch" with two ports on the Fortigate.. and then run one cable to NX1 and one to NX2? Do I need to vPC those?

Obvious goal being if one of the NX goes down.. traffic will still go over the other one.

Thanks! Happy to provide more details if needed.

Jirka1

Explorer II

Hi, I think the best will be LACP https://docs.fortinet.com...egation-and-redundancy

emnoc

New Member

On thes NXOS just build a virtPC and populate the Aggregation LACP on each fortigate to the NX-SW1 and SW2. if you have a active-standby do the same for the stand-by fgt

So keep in mind you will burn 2x members ports for the connection and both should be the same type and on the same switch fabric.

Ken Felix

joebrugAuthor

New Member

hi Ken,

just making sure I'm being clear. I only have 1 fortigate firewall.. and two NX switches. Assume that changes some of your guidance a bit..

tetelu

New Member

Hi,

I have the same situation as you, how did you manage it?
Thanks!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded