Skip to main content
ronio
ronio
New Member
December 12, 2023
Solved

geo cluster

  • December 12, 2023
  • 1 reply
  • 4276 views

Hi everyone,

I want to create a geo-cluster.

two of the FortiGate are in one location and another FortiGate is in a different location.

do I need to create a specific VLAN for the ha traffic? and if I do need it, which subnet should I choose for this vlan?

Thank you

Best answer by srajeswaran

I am not sure what you mean by simple cluster. You need to configure the cluster as a normal HA setup .

1 reply

srajeswaran
Staff
srajeswaran
Staff
December 12, 2023

Hello @ronio , you only need an L2 VLAN for the communication between the fortigates via Hearbeat links. The VLAN ID can be anything, but make sure this ID is not used by any other devices to isolate the HB packets from other network traffic.

    ronio
    ronioAuthor
    New Member
    December 12, 2023

    Thank you!

    so just for the explanation vlan id 40 and subnet 40.40.40.1/29 it's ok right?

    srajeswaran
    Staff
    srajeswaran
    Staff
    December 12, 2023

    Just vlan ID 40, no need to assign subnet IP.

    HB link gets IP address from 169.254.0.0/24 subnet.


    below articles will be handy with these kind of deployments.

    https://community.fortinet.com/t5/FortiGate/Technical-Tip-Best-practices-for-Heartbeat-interfaces-in-FGCP/ta-p/192732

    https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/849059/ha-heartbeat-interface

      Terms & ConditionsAccessibility statement