Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
my question is can this be done completely on the internal LAN? ie, have a virtual IP appear on the LAN that is redirected to multiple real IP addresses that are also on the LAN? if yes, how is it done?If this is what you want: Virtual IP 192.168.1.1 that load balances to lets say 192.168.1.2, 192.168.1.3 and 192.168.1.4 then your client workstation is also on 192.168.1.x network lets say 192.168.1.100. I don' t think this is possible, mainly because the FG cannot keep track of the session and the TCP 3way handshake might not happen. Look at this scenario. 192.168.1.100 initiates connection to Virtual IP 192.168.1.1 FG answers due to proxy ARP and forwards the traffic to 192.168.1.2 This is where TCP 3 way handshake breaks... 192.168.1.2 responds to the TCP SYNC directly to 192.168.1.100. 192.168.1.100 receives this but since it is trying to connect to 192.168.1.1 it will discard the response from 192.168.1.2 3 way handshake does not happen, no TCP connection. If you are using windows servers and what to do this, look at clustering.
Can someone explain more in detail how to have the Virtual Server on the same lan as the Real Servers?
I can't get this to work.
It works when I change the virtual server address to another subnet on the same v-lan.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1702 | |
1092 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.