Skip to main content
BinhDien
BinhDien
New Member
October 28, 2025
Question

VDOM partitioning not work

  • October 28, 2025
  • 1 reply
  • 662 views

Hi everyone 

 

I have two firewalls 201G model version 7.4.6, when i configure vdom partitioning with separate two cluster root and rnd. Root is primary in cluster 1 and rnd is primary in cluster 2, but rnd didn't work. I show HA configured, which is no problem; status and role are correct. When i connect the wan port to rnd primay (cluster 2), the port status is down and pppoe is not up, but when i connect the same port on cluster 1, it's up, but pppoe status is installing. Does anybody meet that case, and how can i fix that

 

Thanks for your help

1 reply

funkylicious
SuperUser
funkylicious
SuperUser
October 28, 2025

hi,

if im not mistaken, you would require to have both FGT connected identically to downstream ( to provide redundacy in case of failover among other ) and then you assign the interface to the VDOM/device that you want to handle the traffic.

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Configuring-HA-virtual-cluster-with-VDOM/ta-p/268820 

"jack of all trades, master of none"
    BinhDien
    BinhDienAuthor
    New Member
    October 28, 2025

    Yes, I also follow that document when I configure, but the vdom in cluster 2 does not work, and the port status is down as I said above.

     

    Now, I moved two VDOMs to make them active on the primary firewall. It's working normally. 

    funkylicious
    SuperUser
    funkylicious
    SuperUser
    October 28, 2025

    i would suggest not connecting any device directly in a FGT, especially when you have a cluster.

    instead try connecting those devices in a L2 device (preferably) each in it's own VLAN and then connect the FGTs to the same L2/switch.

    "jack of all trades, master of none"
      Terms & ConditionsAccessibility statement