Hi all,
It is my second post in a community. Hope someone can help me.
We have 2xFortigate 200E as A-P cluster, some vlans, SSL VPN, IPSec for some clients and Azure, static route. Active and passive nodes are connected to the same ISP-1 for HA. Scheme is here:
I'd like to to full mesh configuration between Fortigate A-P cluster and 2x upstream switches NE1032T. Going to change Fortigate 200E to Fortigate 200F to get more 10G ports and replace LAG 8x1G to 10G + add additional 10G link from NE1032T-A to Fortigate-B and NE1032T-B to Fortigate-A (all connections are red lines: solid and dotted).
Question - what configuration should I implement on Fortigate and upstream switches? Does only LAG configuration will be enough?
TIA,
Viktor
Hi Victor,
Yes, it is enough. If your switches are configured with vLAG, you will just configure standard LAG port on Fortigate.
HTH,
Boris
@bpozdena_FTNT many thanks for reply. Not sure what to configure on ports of switches... Current configuration is set as LAG only for connection to Fortigate. Should I add lacpkeys and adminkeys?
Viktor
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.