In reference to the below article.
The below traffic config
config system geneve
edit "consumer"
set interface "port1"
set type ppp <- case where the internal packet has no Ethernet Header.
set remote-ip 10.4.1.22 <- GENEVE tunnel remote peer IP address.
next
end
1. In the above config , when we deploy customer VPC in 2 AZs and with 2 GWLBendpoints
2. What do we configure on the GENEVE interface as remote iP , will this be the GWLB IP address from the same subnet as Security VPC or the Remote GWLBe endpoint IP address
Hello SSUPPORT,
Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.
Thanks,
Hello SSUPPORT,
We are still looking for someone to help you.
We will come back to you ASAP.
Regards,
Hi @SSUPPORT ,
Not sure if you have seen this article.
Anyway, based on the flow explained in this article, your Security appliance (ex: FGT here) should be configured the Remote IP as the IP address of GWLB and not GWLBE. One GWLB can be connected to many GWLBEs.
Not sure if this clarifies your questions. If not please open a case with Fortinet Support for additional help.
Best Regards,
Saneesh
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1789 | |
1120 | |
768 | |
447 | |
242 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.