07-31-2023 09:20 PM
Hello & Greetings!
As a newbie in the networking field, I found this type of design to face. My client bought one Cisco layer 3 switch and two Fortigate Firewalls. His requirement is like, two firewalls will be in HA mode and they will be the uplink of a single core switch. So my plan is to configure ether channel on the switch .But my doubt is what type of configuration should I do on the firewalls?
07-31-2023 10:08 PM
Hello @Mahadi Hasan,
You could configure Fortigate port as a Trunk. You could configure L3 interco between Fortgate and L3 Switch and add ip routing between them.
You want Fortigate in Active/Active or Active/Passive?
07-31-2023 10:12 PM
Thanks for your response! I want fortigate in active /passive.
07-31-2023 10:16 PM - edited 07-31-2023 10:16 PM
OK @Mahadi Hasan,
Your L3 Switch has got the IP Gateway of VLANs?
If yes, create L3 interco (/30) between these devices. Add default route on your L3 Switch pointing FortiGate. On Fortigate create static routes towards VLANs towards L3 Switch. Perhaps you could see for dynamic routing also.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide