Hello all,
The following scenario:
I have two buildings on one property. Each building has its own FortiGate firewall and local network. The FortiGates of the two buildings are connected via lightwave.
For resilience reasons, a wireless bridge has now been installed between the two buildings, which I would now like to connect to the FortiGate as well.
Question:
Is it correct here to work with a ZONE that includes the two interfaces for lightwave + radio bridge or should I go for SD-WAN?
I would like to use mainly the lightwave and only switch to the radio bridge in the event of a lightwave failure.
How do I get the configuration most cleverly stored, since I currently have no possibility to assign the interface of the lightwave to a zone/SD-WAN, since it is used in policies.
How do you deal with this?
Greetings
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi,
SD-WAN essentially is a zone plus monitoring plus policy routing. To correctly steer the traffic from one WAN to the other, you will need all of this - SD-WAN is the way to go. You can set thresholds for failover, set the preferred line etc.
If the second WAN is already in use, you can prepare the SD-WAN setup in the GUI (even without any interface), backup the config and change what needs to be changed. Then restore the modified config.
As Toshi wrote sdwan is for wan purposes. If the "bridge" between the buildings is only used for lan purposes but not internet you could do port trunking or prio or policy based routing to achieve what you want.
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.