HA Active-Active and Asymmetric Routing

Infrarium · 01-02-2023

Hello everyone, I have two fortigate units in standalone mode and both have asymmetric routing enabled. I would like to re-design my network in order to not enable asymmetric routing since enabling it is a (very) bad security practice. So, here is th...

Infrarium · 04-26-2022

Hello everyone, Where i work we have a Fortigate 400E unit and I have some doubts on how to manage internet access for some of the users, we are using the profile based mode: Heres the scenario:Sales department have a firewall rule "Sales department ...

Infrarium · 01-09-2023

Hello everyone, After all, I believe that the best thing to do here is get two small switches to put in the middle of the FG units and the L3 switch that is far away, in order to solve the problem of the links termination. So if one FG unit fails, th...

Infrarium · 01-05-2023

I thank you for the fast responses and all the documentation and help you have provided me on this matter. Seeing the HA documentation of Fortigate units I saw this: https://docs.fortinet.com/document/fortigate/7.2.3/administration-guide/668583/fgsp ...

Infrarium · 01-05-2023

Yes, but i can only do that on one side of the diagram, because the other L3 switch is physically separated, so the only thing that i have on that side are the two fiber cables of the WAN link.

Infrarium · 01-05-2023

I can do what you say but only on one side of the diagram, the other L3 switch is physically separated from the FG units and I only have one fiber cable for each WAN link, no switch in the middle. What i can do is get a switch to put in the middle, b...

Infrarium · 01-04-2023

Thanks for the fast answer! Yes, i should try to set up a AP cluster, the only thing that still remains is that both wan links end in the same FG unit, and i must use both of them simultaneosly, so i need to put a switch in between the FG units and t...

User Statistics

User Activity