EasyManua.ls Logo

Fortinet FortiGate FortiGate-4000 - Fortigate-4000 HA Configuration

Fortinet FortiGate FortiGate-4000
82 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Getting started Planning the FortiGate configuration
FortiGate-4000 Installation Guide 01-28004-0028-20040830 43
FortiGate-4000 HA configuration
Using HA, you can group two or more FortiGate-4000 units into an HA cluster. The HA
cluster can operate in active-active mode or active-passive mode.
An active-active HA cluster can increase virus scanning throughput by using load
balancing to distribute virus scanning to all of the FortiGate units in the cluster.
An active-passive HA cluster provides failover so that if a functioning FortiGate-4000
unit fails, processing is transferred to another FortiGate-4000 unit in the cluster
without interrupting network service.
Once the FortiGate-4000 units are added to the HA cluster, the cluster functions on
your network as a single FortiGate-4000 unit with one internal interface, one external
interface, and one out of band management IP address. The cluster manages
communication and load balancing between the FortiGate-4000 units in the cluster.
Because you can install up to 10 FortiGate-4000 units in a single FortiGate-4000
chassis, you can configure multiple HA clusters. Each FortiGate-4000 unit can only
belong to one cluster.
You can operate an HA cluster in NAT/Route or Transparent mode. A single
FortiGate-4000 chassis can contain clusters operating in NAT/Route mode and
clusters operating in Transparent mode. For more information on HA, see “High
availability installation” on page 67.
Figure 20: HA network configuration in NAT/Route mode
Figure 21: HA network configuration in Transparent mode
External
204.23.1.5
NAT mode policies controlling
traffic between internal and
external networks.
Internet
POWER ON/OFF
LAN 1 LAN 2
PWR/KVMSTATUS
KVM/ACCESS
POWER ON/OFF
LAN 1 LAN 2
PWR/KVMSTATUS
KVM/ACCESS
POWER ON/OFF
LAN 1 LAN 2
PWR/KVMSTATUS
KVM ACCESS
KVM
ALARM
123
Internal
192.168.1.99
Internal network
192.168.1.3
FortiGate-4000 units in a
HA cluster in NAT/Route mode
204.23.1.5
Transparent mode policies controlling
traffic between internal and
external networks.
Internet
FortiGate-4000 units in a
HA cluster in Transparent mode
Internal
192.168.1.2
Management IP
192.168.1.1
External
(Firewall, router)
Gateway to
public newtwork
POWER ON/OFF
LAN 1 LAN 2
PWR/KVMSTATUS
KVM/ACCESS
POWER ON/OFF
LAN 1 LAN 2
PWR/KVMSTATUS
KVM/ACCESS
POWER ON/OFF
LAN 1 LAN 2
PWR/KVMSTATUS
KVM ACCESS
KVM
ALARM
123
Internal network
192.168.1.3

Table of Contents

Other manuals for Fortinet FortiGate FortiGate-4000

Preview: Quick Start Guide
Quick Start Guide2 pages
Preview: Administration Guide
Administration Guide390 pages

Related product manuals