Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
897
Views
5
Helpful
8
Replies

routing help

bluesea2010
Level 5
Level 5

ā€Ž03-11-2022 07:50 AM

Hi, I have two different sites, but I have only two firewalls, so want to deploy active-standby,

if site b internet traffic has to go through site b active fw , if site a fw fails ,site b fw should be active and all internet traffic has to go through the site b

active passive.JPG

How can I do this

What are the pros and cons

Thanks

0 Helpful
8 Replies 8

Kasun Bandara
VIP
VIP

ā€Ž03-11-2022 08:01 AM

my suggestion is to use 2 firewalls independently on 2 sites. you can use route metric customizations to do route prioritization. 

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB

bluesea2010
Level 5
Level 5
In response to Kasun Bandara

ā€Ž03-11-2022 08:13 AM

Hi,

Thanks . if site A both firewall failed , how  can  I  send the  internet traffic to site b . 

And If site A  wan connection failed but firewall active , how can I send to site B

Thanks

0 Helpful

Kasun Bandara
VIP
VIP
In response to bluesea2010

ā€Ž03-11-2022 08:14 AM

you need 2 internet connections for 2 sites. 

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful

bluesea2010
Level 5
Level 5
In response to Kasun Bandara

ā€Ž03-11-2022 08:17 AM

Hi,

If no redundant isp then?

Thanks 

0 Helpful

Kasun Bandara
VIP
VIP
In response to bluesea2010

ā€Ž03-11-2022 08:20 AM

if sites are placed in distant places, you must have 2 connections for both sites. because if 1 site goes down, all the links are unusable. so you need secondary set of links to get access.

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful

bluesea2010
Level 5
Level 5
In response to Kasun Bandara

ā€Ž03-11-2022 08:26 AM

Hi,

I think my question was not clear , the connectivity between sites are ok and both sites firewall are up.But in site b the isp is down .

So I want all internet traffic from site a to site b.

How can I do that 

Thanks

0 Helpful

Georg Pauwen
VIP
VIP
In response to bluesea2010

ā€Ž03-11-2022 09:32 AM

Hello,

 

how are the sites connected to the firewalls ? The easiest would probably be to implement SLAs on boyh sides that track the availability of the firewalls, and if there is no reachability, simply reroute all traffic using static routes...

0 Helpful

paul driver
VIP
VIP

ā€Ž03-11-2022 12:41 PM

Hello
If a site isp link fails then how do you connect to the other site?
If you donā€™t have any resilient connection the site thatā€™s fails is isolated, As such you cannot have any form of HA redundancy.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the communityā€™s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents