Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
FortiM
New Contributor

Created on ‎03-08-2023 10:56 PM

FG-201F HA Setup using different LAN interfaces at each of members

Hello all,

 

I have a question regarding HA setup, i want to use different lan port at HA setup. Is that possible? For example, Two devices ha setup, wan port are the same at both devices and for lan port, i would like to use 10G port for primary device and 1G port for Secondary device. Is that possible to setup HA for these two ? Please check in reference scenario.

Much appreciate for the reply. 

 

FortiM_0-1678344953740.png

 

Labels:
991
0 Kudos
4 REPLIES 4
srajeswaran
Staff
Staff

Created on ‎03-08-2023 11:03 PM

Configuring an HA requires you to use identical setup between the member nodes so that the sessions can be synced and failover works fine.
Is there any specific reason for not using the same links on both nodes?

Regards,
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
988
0 Kudos
FortiM
New Contributor
In response to srajeswaran

Created on ‎03-08-2023 11:38 PM

Thanks @srajeswaran 

correct. we have specific reason not using same links on both. currently we use 10G cable between switch and firewall. Now customer want to do HA purchasing another FG and they do not want to purchase one more 10G. That's why.

982
0 Kudos
srajeswaran
Staff
Staff
In response to FortiM

Created on ‎03-09-2023 12:04 AM

They need to use the same interfaces on both members. Lets say, the 10G interface is port1 and 1G interface is port2.

 

In case of failover, the new node expects the sessions using port1 to continue using port1 and port2 sessions to continue with port2.
Sessions using port1 cannot be moved to the other node when port1 is down on that node.
Also, lets say if the 10G port as more than 1G traffic, how will the new node handle the traffic exceeding 1G (capacity).



Regards,
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
974
0 Kudos
FortiM
New Contributor
In response to srajeswaran

Created on ‎03-09-2023 09:36 AM

Thanks for the suggest @srajeswaran . I will plan to use the same ports in both.

966
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.