I am looking to configure 2 GRE Tunnels with Zscaler for my internet traffic on a forti 7.4 cluster. If i understand this correctly i have to configure a GRE Interface , assign tunnel end IPs , add route towards GRE Tunnel.
But how do i setup 2 GRE Tunnels in Active/Passive mode ? does both of them are setup with Port1 and different remote end endpoints ? how is the switchover handled in case say GRE1 tunnel fails ?
any help is appreciated.
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
You can do that based on the static route of the destination.
Change the ad distance of the secondary one to a higher number.
To ensure that the primary tunnel (GRE Tunnel 1) is used as the active path and the second tunnel (GRE Tunnel 2) is used as a backup, you can manipulate the route metric. Set the metric lower on the primary route.
You can do that based on the static route of the destination.
Change the ad distance of the secondary one to a higher number.
To ensure that the primary tunnel (GRE Tunnel 1) is used as the active path and the second tunnel (GRE Tunnel 2) is used as a backup, you can manipulate the route metric. Set the metric lower on the primary route.
Thanks..so for tunnel 1 and 2 ..i can use my cluster vip and the other end will be zscalar endpoint 1 and 2 ?
And both of them can be setup on port1 ?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1633 | |
1063 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.