Skip to main content
tedew
tedew
New Member
February 10, 2025
Question

Fortigate cluster and closed enviroment

  • February 10, 2025
  • 1 reply
  • 786 views

Hello,

We have cluster of two FGT200F on production, there is no Internet connection, no default route set. 

 

In two months we have to refresh all license - current will expire. 

 

Can we use one port (for example port 1) and connect to them some LTE router for a while ?? 

Action Plan:

1.Set port1 to (dhcp) get IP from LTE Router 

2.Set default route pointing to LTE Router IP

3.Create a access rule to interent with NAT on Port1

 

Looks OK ??

 

Second question, does secondary FGT will automatically refresh lic  , or we have to the same as above on secondary ??

 

Thanks

 

1 reply

AEK
SuperUser
AEK
SuperUser
February 10, 2025

Hi Ted

1 and 2 are ok, but regarding 3 you don't need to create access rule to interent with NAT on Port1, since the traffic is local-out.

Once 1st FGT is done you will need to fail-over your cluster to the second node in order to refresh license.

AEK
tedew
tedewAuthor
New Member
February 10, 2025

Hi AEK,

Ok thank You, which command should I run to failover manually ??

 

AEK
SuperUser
AEK
SuperUser
February 11, 2025

Hi Ted

You can just reboot the active node from GUI menu or from CLI (exec reboot).

AEK
Terms & ConditionsAccessibility statement