Fortigate HA over remote sites AND SD-WAN

Question

Good Day,

I'm looking for a solution to implement an HA cluster between 2 Fortigates that are installed in different server racks/server rooms. Rooms are connected with Fiberlinks over a switch stack (not Fortinet Switch). To add to that, there's 2 ISPs on site and would like to have it redundant with SD-WAN and everything.

I have found 2 documents stating that both solutions are possible on their own but NOT used together

https://docs.fortinet.com/document/fortigate/6.4.0/new-features/297020/fortigate-ha-between-remote-sites-over-managed-fortiswitches-6-4-2

https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/759633/sd-wan-with-fgcp-ha-expert

If you have any inputs or different solutions to this, let me know!

aahmadzada · Accepted Answer

Hello  olauzon, This one covers all your requirements:https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/759633/sd-wan-with-fgcp-ha-expertWhen it comes to the cluster members running on two different locations.Let`s assume that:FGT_A and Switch_Stack_member_A in Server Room AFGT_B and Switch_Stack_member_B in Server Room B1.Configure a dedicated vlan for heartbeats on the switches2. Assign one or two ports on each switch stack member(depending on how many hb interfaces you`ll be using) to that vlan3. Connect hb interface(s) to that port(s)Ahmad

Anonymous_User · Answer

Hello  olauzon,    Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.    Thanks,  Raja- Fortinet Community Team

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded