Fortigate Virtual Servers to load balance internal traffic
Hi All, I'm wondering if anybody ever used Fortigate's virtual servers load balance feature to balance internal traffic. Fortinet's kb shows it as something to be used to load balance external requests to internal server, though what I'm trying to do is to set up a virtual server to load balance all the internal LDAP/DNS requests coming from different vlans to our 3 domain controller servers. I apparently set this configuration up succesfully but after a few minutes I had to turn it off since the domain controllers started degrading their performance (might have the health check made them do this?). When the virtual server/load balancer was turned off the DCs performance got immediately better again. Wonder if it's good practice to use the load balancer for LAN traffic and if I did something wrong in setting it up. Thanks.
First Alive: Directs sessions to the first live real server. This load balancing schedule provides real server failover protection by sending all sessions to the first live real server. If a real server fails, all sessions are sent to the next live real server. Sessions are not distributed to all real servers so all sessions are processed by the first real server only.
I did refer to the admin guide, though I don't understand why when all clients and server on the plan send their ldap request directly to the DCs there is no problem, then when I set up a virtual server that load balance to the two DCs (even if no host has its requests routed through the virtual server yet) their performance degrades until I delete the virtual server.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.