- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Fortigate SDWAN with Active Passive connections
Hi,
We will be deploying 2 firewalls behind a GWLB on AWS. We now need to plan for integrating with the existing SDWAN connecting to on-prem locations. Can we have one firewall as active for few branches and the other one as active for the remaining.
Can you please share if there is a reference document related to the requirement.
Thanks
Lohith
- Labels:
-
FortiGate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I'm confused. Do you have two firewalls in A-P? or are they independent and not clustered? Either way most likely of course you can do what you want.
It all comes down to routing and SD-WAN rules. If you have the routes to the destinations over both WAN (or in this case IPSec) interfaces then you just need to create the SD-WAN rules that make sense.
Can I be honest though? It sounds like what you are doing is overly complicated? Why are you trying to split it up the way you are?
Graham
