Hello Community In a FortiLink split-interface setup, how can i decide,
which interface should be prefered? Background100F ClusterInterface x1
and x2 belong to FortiLink Agg Interfacex1 goes to 1024E "Core-Main"x2
goes to FSW1xxF Series Switch "Core-...
Hi CommunityI'm in need for some design guides and ideas.I have a few
Fortigates in different Offices. All of them have an internet connection
and sometimes a backup line.All locations have a vpn tunnel to the HQ
and a static 10.0.0.0/16 route which ...
I have the "priority" switch for all physical interfaces config system
interface edit "x1" set vdom "root" set type physical set mediatype sr
set speed 10000full next edit "x2" set vdom "root" set priority 10 set
type physical set mediatype sr set sp...
Hello AEKAccording to the info I found so far, this priority setting is
used for routing purposes e.g. route priorityI was using this setting as
well but it did not have any impact. I'll test it more within the next
few days
ok that makes sense now. i had the impression that you use two /30
networks per vpn ;) You may can work with two /32 per VPN and therefore
"save" some addresses. LB is /32 and remote-ip is also a /32so you can
use 128 tunnels when you have a /24 dedi...
Hi ede_pfau I'm in the lab and testing this out. So far it works
nice.Currently i'm using seperate are for each branch. It "feels"
cleaner for me @ede_pfau wrote:For the links, I use a 'supernet' like
10.7.x.x, with two 10.7.x.y/30 addresses per VPN....
Hi AnthonyThank you for your reply.Over the weekend I was reading about
de "interface-type point-to-point" and that may be a solution. Like
using area 0 for all directly connected branches but set all
ospf-interfaces to point-to-point I'll have to ch...
