I am configuring a set of HA FortiADCs and would love a sanity check on my cabling. Initially I was trying to keep a switch out of the mix and just use the internal switching capabilities of the FortiGate and FortiADCs but it doesn't seem that's feasible/ideal due to the possible failover scenarios.
https://kb.fortinet.com/kb/viewContent.do?externalId=FD31396
In referencing the above link, Fortinet suggests to create two LACP groups on the switch for each firewall. I'm running a pair of Aruba 5400rzl2 switches in a VSF configuration so they're a single logical device. I'm applying this article's suggestion to the FortiADCs as well so I will have a total of 4 LACP groups that will all be added to the same VLAN on the Aruba.
Any input would be appreciated on this, I think what I've scratched together will be solid, but I would definitely appreciate a sanity check.
My diagram is in the image posted below.
Cheers
No comments:
Post a Comment