Hi guys,
How can I apply this HA mode on for this topology ?
I have two isp and two different wan ip network. How can I archive this ?
I tried active-passive ha but due to nat interface rule it didn't work.
Regards,
Baris.
Hi,
Do you have the router before FW or ISP link is directly connecting into WAN ports?
In any case, suggestion is to keep the device priority 200 and heartbeat interface priority 50, 50 on both ports
on which ports you have connected both FW's to each other to create HA? Let me know.
In an HA cluster, all members share the same configuration for fail-over purpose. For your requirements, I would suggest you take a look at SD-WAN.
Hi Boris,
I have same topology with you, i use SD wan for ISP fail over.
and cisco swtich above the Fortigate,
can you help me with the cisco switch configuration for isp link and interface to the Fortigate Wan port ?
it will very helpful for me.
many thanks,
.co
Hi Ahmed,
I think I solve the topology in right manner.
Since the buildings are seperated for each fw my topology going to like that.
Although I didn't apply for today. At the moment Side A fw connected Wan interface is WAN1
Side B Wan interface WAN2 port connected to the ISP.
Monitor interface both Wan1 and Wan2 selected.
If ports down switching is so slow. Takes serious time. 5-6 min sometimes.
I think it will be corrected after fixing the topology like above.
What do you think ?
Regards,
Baris.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.