Good Afternoon Everyone,
The 6.2.3 cookbook gives a configuration example of how to setup an ADVPN/SDWAN configuration with 2 ISP's at each spoke and 2 ISP's at HQ, but with 2 separate FortiGates.
https://docs.fortinet.com/document/fortigate/6.2.3/cookbook/985659/advpn-and-shortcut-paths
How can I achieve this with 1 HUB Fortigate with both ISPs connected to it? We use our FortiGates as the default gateway for our client machines at both HQ Hub and at the Branch spokes.
In addition that example does not use SDWAN on the HUB, we would like to use SDWAN on the HUB fortigate so that the users working at HQ local to the hub have redundant internet conenctivity if one of the ISP's goes down.
Any help is appreciated. Its not too hard to find information about SDWAN or ADVPN, but it's hard to find information or people well versed in SDWAN *AND* ADVPN.
If I understand your question, you want to run 2-ISPs to as single Fortigate in an SD-WAN design. If so, here is a youtube link on FortiGate Cookbook - Redundant Internet with SD-WAN (5.6) that should help:
https://www.youtube.com/watch?v=SV9YrpG_li8&t=2s
Hope this helps.
Ernest,
I'm running 2 ISP's on a single HUB, and 2 ISPs on each of my spokes. Both the hub and the spokes need to be ADVPN and SDWAN.
I'm sorry, but wanted to understand your network a little more before making any suggestions. I have quickly drawn a diagram, but maybe you have one that you can share without any of your public IP addresses. Let me know what you have or is the diagram(attached) good enough.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.