Good Day,
I'm looking for a solution to implement an HA cluster between 2 Fortigates that are installed in different server racks/server rooms. Rooms are connected with Fiberlinks over a switch stack (not Fortinet Switch). To add to that, there's 2 ISPs on site and would like to have it redundant with SD-WAN and everything.
I have found 2 documents stating that both solutions are possible on their own but NOT used together
https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/759633/sd-wan-with-fgcp-ha-expert
If you have any inputs or different solutions to this, let me know!
Solved! Go to Solution.
Hello olauzon,
This one covers all your requirements:
https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/759633/sd-wan-with-fgcp-ha-expert
When it comes to the cluster members running on two different locations.
Let`s assume that:
FGT_A and Switch_Stack_member_A in Server Room A
FGT_B and Switch_Stack_member_B in Server Room B
1.Configure a dedicated vlan for heartbeats on the switches
2. Assign one or two ports on each switch stack member(depending on how many hb interfaces you`ll be using) to that vlan
3. Connect hb interface(s) to that port(s)
Ahmad
Created on 03-06-2022 09:10 PM
Hello olauzon,
Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.
Thanks,
Raja- Fortinet Community Team
Hello olauzon,
This one covers all your requirements:
https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/759633/sd-wan-with-fgcp-ha-expert
When it comes to the cluster members running on two different locations.
Let`s assume that:
FGT_A and Switch_Stack_member_A in Server Room A
FGT_B and Switch_Stack_member_B in Server Room B
1.Configure a dedicated vlan for heartbeats on the switches
2. Assign one or two ports on each switch stack member(depending on how many hb interfaces you`ll be using) to that vlan
3. Connect hb interface(s) to that port(s)
Ahmad
Good Day Everyone,
That would mean that I would need more dedicated VLANs to go over the switch stack for the "WAN" interface?
Thank you
Hi,
As well as for the LAN.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.