Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MustphaBassim
New Contributor III

Active/Standby

Hello Dears

I am asking if we could make the following scenario on Fortigate firewall :
we have two servers these servers must connect to external system (not located on our network) the outside server is able to receive one connection from our two servers we are thinking if there is a method on Fortigate firewall to make both of our servers connect to external server using Active/standby mode i meant if our one of our servers is down the other server would resume the sessions and vica versa
Best Regards

3 REPLIES 3
kvimaladevi
Staff
Staff

Hi MustphaBassim,

As per your requirement, you want 2 internal servers to communicate with an outside server in active-passive mode. We will need more information on this to suggest further.

Could you confirm how these 2 servers are connected to each other and to the external server. Also, please let us know what type of servers are they.

We will need the network topology and the information about what type of traffic/communication will be happening between the internal and external servers.

 

Regards,

Vimala

MustphaBassim

Untitled.pngHello Dear and thnx for your reply , here is an image that may help
we have S1 and S2 both of them must work as Active/Standby mode to connect with external server using port 5505 since the external server not accept only one connection so our requriments is to get both of S1 and S2 to work Active/Standby mode so when S1 goes down the S2 resume the connection 

kvimaladevi
Staff
Staff

Hi MustphaBassim,

 

Thank you for the topology. As your requirement is to configure active/passive mode between the servers, this configuration has to be done at the source level as there should be communication between the internal servers. They should be sending packets like keep alive to detect if one is down and take over the sessions. Fortigate will be able to later forward the traffic.

For any Active/passive setup, configuration will be done on the source devices only and any 3rd party device will  not be able to do it.

 

Regards,

Vimala