Dear Expert,
I have Fortigate & FotriADC implementation,I have decided to used FortiADC in One Arm Mode.
FortiADC will distribute the packets to PRO servers,I am just wondering if make FortiGate as the Gateway for the servers, will FortiADC work normally and all of them are in different IP subnets ? so FortiADC will reach the real server by routing the packet through L3 switch.
I would really like to attached the design , but unfortunately Attaching photos feature is not working .
Pro Servers IP :1.1.1.2,3,4
GW 1.1.1.1
FortiGate Internal Interface for Servers 1.1.1.1/24
FortiADC VIP 192.168.1.1
FortiADC Internal Interface is 3.3.3.3
Gateway of FortiADC 3.3.3.1 and it is L3 switch
Thanks alot
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Yes, in principle the FortiADC will just send the traffic toward the real servers no matter where they are and if the default or specific route on the FortiADC can reach the real servers.
BUT getting traffic back to the FortiADC can be in an issue in one-armed mode. so you need to use full NAT.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.