Good morning everyone. Attached is the current scene. We have now acquired a second Fortigate 100F. The idea is to configure the two in active-passive HA (High Availability). I have some doubts. 1) Can the WAN be the same? 2) How do I connect and where do I connect the three doors of the second Fortigate? 3) The 3 ports of the first Fortigate are configured as DHCP Servers, will they continue to work?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
This is the ideal method and all the functionalities will continue to work as in the current setup.
Yeah, the same ports from both units need to connect to the same LAN subnets. The LAN segments in diagram shows switches, is that so? If so, you just need to add one port to the connection towards the new FGT unit.
Hi Fabio,
Yes, this is correct and expected to work.
This is the ideal method and all the functionalities will continue to work as in the current setup.
Woww... Great, thanks for the quick reply srajeswaran. Two more little doubts. 1) I don't have a Layer 2 switch, can it still work? 2) I connect ports H1 and H2 equally to each other, right?
Yeah, the same ports from both units need to connect to the same LAN subnets. The LAN segments in diagram shows switches, is that so? If so, you just need to add one port to the connection towards the new FGT unit.
OK perfect. Sorry but the translator often doesn't work effectively. So I can use a regular 1GB Switch. I entered the new design. Last thing, the 3 LAN ports are currently configured in VLAN Switch. Is that okay?
yes, this looks fine. Yes, the VLANs can be configured on the VLAN switch, just need to make sure the FGT ports (from both nodes) are mapped to the corresponding LAN ports.
I was wrong, actually the scheme should be this, precisely because I don't have a layer2 switch
Hi Fabio,
Yes, this is correct and expected to work.
Let's hope so. It's the first time I try something more advanced. Also because I made the company spend a lot of money :) Thank you very much for the technical and moral support :)
You are welcome. Feel free to post more if you face any issues while implementing. We are here to help.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1641 | |
1069 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.