Solved

Load Balancing using Fortigate device

Posted on 2008-06-13
2
9,397 Views
Last Modified: 2013-11-16
I've installed a Fortigate 300A firewall device. Is it possible to use this device as a load balancer for my 2 internet lines ? something like what GLBP does.

Thanks
0
Comment
Question by:Farrahi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 15

Accepted Solution

by:
JimboEfx earned 500 total points
ID: 21966996
It is indeed possible to use the Fortigate for WAN failover/load balancing. The fortigate can either use the links in active/passive fashion outbound, but active/active inbound or (to a degree active/actvie outbound and inbound. This assumes the fortigate is the outgoing router to the internet and that the WAN connections are connected to seperate interfaces (e.g. WAN1 and WAN2).

There are a number of articles on the subject, but i will list just these two:

http://kc.forticare.com/default.asp?id=376&Lang=1&SID=
http://kc.forticare.com/default.asp?id=1583&SID=&Lang=1

There are also some documentation on the unit:

http://docs.forticare.com/fgt/techdocs/FortiGate_Administration_Guide_01-30006-0203-20080313.pdf

I have no personal experience of GLBP to give you a direct comparison.

You should note that the mechanism used in a single unit for WAN failer is based purely on the ability to ping a target (or multiple targets). When the target (or targets) are unavailable for a defined period of time the interface is marked as down and the routing table adjusted (until it gets replies again).

Having more than one unit in a cluster gives you some more options to survive a unit failure, or even for example someone unplugging WAN1 on one unit - as the unit would fail over to another node which said its WAN1 was OK.

So the simple answer is yes, the longer answer is it depends on what your expectations are.
0

Featured Post

Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
VPN tunnel up, but no pings or remote resource access 13 147
Sonicwall routing between VPNs 5 67
l2tp tunnel from pc to router 14 105
SonicWall Max Connection Setting 7 44
In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question