Fortigate-4000 Ha Configuration - Fortinet FortiGate FortiGate-4000 Installation Manual
Fortinet fortigate fortigate-4000: install guide
Hide thumbs
Also See for FortiGate FortiGate-4000:
- Quick start manual (2 pages) ,
- Administration manual (390 pages)
Table of Contents
Advertisement
Getting started
FortiGate-4000 HA configuration
FortiGate-4000 Installation Guide
Using HA, you can group two or more FortiGate-4000 units into an HA cluster. The HA
cluster can operate in active-active mode or active-passive mode.
An active-active HA cluster can increase virus scanning throughput by using load
balancing to distribute virus scanning to all of the FortiGate units in the cluster.
An active-passive HA cluster provides failover so that if a functioning FortiGate-4000
unit fails, processing is transferred to another FortiGate-4000 unit in the cluster
without interrupting network service.
Once the FortiGate-4000 units are added to the HA cluster, the cluster functions on
your network as a single FortiGate-4000 unit with one internal interface, one external
interface, and one out of band management IP address. The cluster manages
communication and load balancing between the FortiGate-4000 units in the cluster.
Because you can install up to 10 FortiGate-4000 units in a single FortiGate-4000
chassis, you can configure multiple HA clusters. Each FortiGate-4000 unit can only
belong to one cluster.
You can operate an HA cluster in NAT/Route or Transparent mode. A single
FortiGate-4000 chassis can contain clusters operating in NAT/Route mode and
clusters operating in Transparent mode. For more information on HA, see
availability installation" on page
Figure 20: HA network configuration in NAT/Route mode
External
204.23.1.5
Internet
Figure 21: HA network configuration in Transparent mode
Gateway to
public newtwork
204.23.1.5
Internet
(Firewall, router)
01-28004-0028-20040830
67.
FortiGate-4000 units in a
HA cluster in NAT/Route mode
1
2
3
ALARM
KVM
KVM/ACCESS
KVM/ACCESS
KVM ACCESS
PWR/KVM STATUS
PWR/KVM STATUS
PWR/KVM STATUS
LAN 1
LAN 2
LAN 1
LAN 2
LAN 1
LAN 2
POWER ON/OFF
POWER ON/OFF
POWER ON/OFF
NAT mode policies controlling
traffic between internal and
external networks.
FortiGate-4000 units in a
HA cluster in Transparent mode
1
2
3
192.168.1.1
KVM/ACCESS
KVM/ACCESS
KVM ACCESS
PWR/KVM STATUS
PWR/KVM STATUS
PWR/KVM STATUS
LAN 1
LAN 2
LAN 1
LAN 2
LAN 1
LAN 2
External
POWER ON/OFF
POWER ON/OFF
POWER ON/OFF
192.168.1.2
Management IP
Transparent mode policies controlling
traffic between internal and
external networks.
Planning the FortiGate configuration
Internal network
Internal
192.168.1.99
192.168.1.3
Internal network
ALARM
KVM
Internal
"High
192.168.1.3
43
Advertisement
Table of Contents
Need help?
Do you have a question about the FortiGate FortiGate-4000 and is the answer not in the manual?
Questions and answers