1. Manuals
  2. Brands
  3. Fortinet Manuals
  4. Controller
  5. FortiController-5913C
  6. System manual

Fortinet FortiController-5913C System Manual

Session-aware load balancing cluster (slbc)
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Session-Aware Load Balancing Cluster (SLBC) System Guide
This FortiController-5913C Session-Aware Load Balancing Cluster (SLBC) System Guide describes FortiController-5913C
hardware features, how to install a FortiController-5913C board in a FortiGate-5144C chassis, and how to configure the
FortiController-5913C system for your network.
The most recent versions of this and all FortiGate-5000 series documents are available from the
the
Fortinet Technical Documentation
Access to Fortinet customer services, such as firmware updates, support, and FortiGuard services, requires product
registration. You can register your FortiController-5913C at http://support.fortinet.com.
FortiController-5913C Session-Aware Load Balancing
Cluster (SLBC) System Guide
10-500-259409-20160210
FortiController-5913C
web site (http://docs.fortinet.com).
FortiGate-5000
page of

Advertisement

Table of Contents
loading

Related Manuals for Fortinet FortiController-5913C

Summary of Contents for Fortinet FortiController-5913C

  • Page 1 Session-Aware Load Balancing Cluster (SLBC) System Guide This FortiController-5913C Session-Aware Load Balancing Cluster (SLBC) System Guide describes FortiController-5913C hardware features, how to install a FortiController-5913C board in a FortiGate-5144C chassis, and how to configure the FortiController-5913C system for your network.

  • Page 2: Cautions And Warnings

    (UTP). Mechanical loading – To avoid personal injury or damage to the appliance, Fortinet recommends that 2 or more people together install the appliance into the rack. Balance the equipment to avoid uneven mechanical loading and tipping. Do not place heavy objects on the appliance.

  • Page 3: Table Of Contents

    FortiController-5913C mounting components ..... Inserting a FortiController-5913C board ......
  • Page 4 Customer service and support ......Fortinet products End User License Agreement ....

  • Page 5: Forticontroller-5913C System

    You should install the FortiController-5913C in a FortiGate-5144C chassis to meet FortiController-5913C power requirements, to have access to a 40G fabric backplane, and to have enough slots for the number of workers that the FortiController-5913C can load balance sessions to.

  • Page 6: Front Panel Leds And Connectors

    • LED status indicators. Front panel LEDs and connectors From the FortiController-5913C font panel you can view the status of the LEDs to verify that the FortiController-5913C is functioning normally. You also connect the FortiController-5913C to your 100-gigabit network using the F1 and F2 front panel CFP2 connectors.

  • Page 7: Leds

    PWR (Power) Green The FortiController-5913C is powered on. The FortiController-5913C is powered on. Flashing The FortiController-5913C is starting up. If this LED is STA (Status) Green flashing at any time other than system startup, a fault condition may exist. Amber The correct cable is connected to the interface and the connected equipment has power.

  • Page 8: Front Panel Connectors

    Fortinet documentation website (http://docs.fortinet.com). The FortiController-5913C uses 2 on-board FortiASIC DP processors to perform high- performance session-aware load balancing (SALB). A single FortiController-5913C can distribute millions of concurrent sessions to up to 12 workers and start millions of new sessions a second.
  • Page 9 If a worker fails or is removed from the cluster, the FortiController-5913C detects its absence and re-balances and redistributes sessions to the remaining workers.
  • Page 10 • Four FortiController-5913Cs and up to 10 workers in a chassis with dual dual star architecture (such as the FortiGate-5144C). All four FortiController-5913Cs receive and load balance sessions to the workers. If a FortiController-5913C fails the other FortiController-5913Cs continue to operate. All sessions processed by the failed FortiController-5913C are lost.

  • Page 11: Setting Up A Single-Chassis Salb Cluster

    • Two FortiController-5913Cs in dual mode and up to 12 workers in each chassis. Both FortiController-5913Cs in one of the chassis receive and load balance sessions to the workers in that chassis. If a FortiController-5913C fails, the sessions fail over to the FortiController-5913Cs in the other chassis.
  • Page 12 FortiController-5913C session-aware load balancing (SALB) FortiController-5913C system FortiController-5913C Session-Aware Load Balancing Cluster (SLBC) System Guide 10-500-259409-20160210 http://docs.fortinet.com/...

  • Page 13: Hardware Installation

    You must install CFP2 transceivers to connect FortiController-5913C front panel F1 and F2 interfaces to 100-gigabit networks. The CFP2 transceivers are inserted into the F1 and F2 cage sockets on the FortiController-5913C front panel. You can install the CFP2 transceivers before or after inserting the FortiController-5913C board into a chassis.

  • Page 14: Forticontroller-5913C Mounting Components

    FortiController-5913C mounting components To install a FortiController-5913C board you slide the board into a hub/switch slot in the front of an ATCA chassis (usually slot 1 or 2 of a FortiGate-5144C chassis) and then use the mounting components to lock the board into place in the slot. When locked into place and positioned correctly the board front panel is flush with the chassis front panel.

  • Page 15: Inserting A Forticontroller-5913C Board

    Only then will the FortiController-5913C board power-on and start up correctly. FortiController-5913C boards are hot swappable. The procedure for inserting a FortiController-5913C board into a chassis slot is the same whether or not the chassis is powered on. To insert a FortiController-5913C board into a chassis slot Do not carry the FortiController-5913C board by holding the handles or retention screws.
  • Page 16 The handles should hook into the sides of the chassis slot. Closing the handles draws the FortiController-5913C board into place in the chassis slot and into full contact with the chassis backplane. The FortiController-5913C front panel should be in contact with the chassis front panel.

  • Page 17: Shutting Down And Removing A Forticontroller-5913C Board

    FortiController-5913C board from an ATCA chassis slot. FortiController-5913C boards are hot swappable. The procedure for removing a FortiController-5913C board from a chassis slot is the same whether or not the chassis is powered on. To remove a FortiController-5913C board from a chassis slot Do not carry the FortiController-5913C board by holding the handles or retention screws.
  • Page 18 • An electrostatic discharge (ESD) preventive wrist strap with connection cord FortiController-5913C boards must be protected from static discharge and physical shock. Only handle or work with FortiController-5913C boards at a static-free workstation. Always wear a grounded electrostatic discharge (ESD) preventive wrist strap when handling FortiController-5913C boards.

  • Page 19: Resetting A Forticontroller-5913C Board

    Fully Clo ed and Locked 10 Carefully slide the board completely out of the slot. 11 Re-attach the protective metal frame if you are going ship the FortiController-5913C board or store it outside of a chassis. Resetting a FortiController-5913C board You can use the following procedure to reset a FortiController-5913C board without removing it from the chassis.

  • Page 20: Troubleshooting

    Troubleshooting Hardware installation 4 After 10 seconds snap the right handle back into place. The board powers up, the LEDs light and in a few minutes the FortiController-5913C board operates normally. Troubleshooting This section describes the following troubleshooting topics: •...

  • Page 21: Basic Configuration

    Basic Configuration This section describes connecting and configuring a session-aware load balanced cluster (SLBC) consisting of a FortiController-5913C board installed in slot 1 and 2 or more workers installed in chassis slots 3 and up. Before using this chapter, your chassis should be mounted and connected to your power system and the boards should be installed in the chassis.

  • Page 22: Licenses (Support, Fortiguard, Forticloud, Forticlient, Fortitoken Mobile, Vdoms)

    By default, you can connect to the FortiController-5913C GUI by browsing to https://192.168.1.99. Connecting to the FortiController-5913C CLI You can connect to the FortiController-5913C CLI using the serial connector that came packaged with your FortiController-5913C board or an Ethernet connection to the mgmt interface.

  • Page 23: Factory Default Settings

    192.168.1.99/24 At any time during the configuration process, if you run into problems, you can reset the FortiController-5913C board or the workers to factory default settings and start over. From the CLI enter execute factory-reset. Initial session-aware load balanced cluster setup...
  • Page 24 The External Management IP/Netmask must be on the same subnet as the FortiController-5913C management IP address. 12 Connect FortiController-5913C front panel interface F1 to the Internet and front panel interface F2 to the internal network.

  • Page 25: Using The External Management Address To Connect To All Units In The Cluster

    The custom port number begins with the standard port number for the protocol you are using and is followed by the chassis slot number. For example: • To connect with a web browser to the FortiController-5913C in slot 1 browse to https://10.10.10.1:44301 •...

  • Page 26: Upgrading Cluster Firmware

    Status page of the FortiController-5913C web-based manager. To upgrade FortiController-5913C firmware from the web-based manager If the cluster contains two FortiController-5913C boards, this procedure upgrades the firmware running on both of them in a single operation. 1 Log into the FortiController-5913C web-based manager.

  • Page 27: Verifying The Configuration And The Status Of The Boards In The Cluster

    Use the following command from the FortiController-5913C CLI to verify that the FortiController-5913C board can communicate with all of the workers in the cluster and to show the status of each board. For example, for the cluster shown in...

  • Page 28: For More Information

    For more information Training Services Fortinet Training Services offers courses that orient you quickly to your new equipment, and certifications to verify your knowledge level. Fortinet training programs serve the needs of Fortinet customers and partners world-wide. Visit Fortinet Training Services at http://campus.training.fortinet.com, or email training@fortinet.com.
  • Page 29 Fortinet. For absolute clarity, any such warranty will be limited to performance in the same ideal conditions as in Fortinet’s internal lab tests. Fortinet disclaims in full any covenants, representations, and guarantees pursuant hereto, whether express or implied.
  • Page 30 European Conformity (CE) - EU This is a Class A product. In a domestic environment, this product may cause radio interference, in which case the user may be required to take adequate measures. FortiController-5913C Session-Aware Load Balancing Cluster (SLBC) System Guide 10-500-259409-20160210 http://docs.fortinet.com/...

Table of Contents