- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Multiple unicast-hb-peer ip in same subnet in fortigate
Currently we are having Fortigate VM deployed in AWS in different regions.
We have only one port configured for HA-SYNC between two fortigate VM as shown in this diagram.
On the diagram it was given with 10.0.2.11 to primary
and 10.0.12.11 to secondary
Question :
Can we configure another HA-SYNC interface (for eg: port6) on the same subnet range as Port4 as shown in diagram above. Below will be the configuration
10.0.2.12 to primary with port 6
10.0.12.12 to secondary with port6
- Labels:
-
FortiMonitor
-
High Availability
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Greetings!
The same subnet range can be configured after enabling the subnet overlap setting.
# config system settings
set allow-subnet-overlap [enable/disable]
end
Reference Document: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable-subnet-overlap-to-set-IP-addresses-...
Regards!
If you have found a solution, please like and accept it to make it easily accessible for others.
