Improve company productivity with a Business Account.Sign Up

x
?
Solved

Failover solution for two ISPs

Posted on 2013-11-20
3
Medium Priority
?
307 Views
Last Modified: 2013-11-21
Hi,

I'm trying to figure out the best solution here. We have two ISPs providing Inet services for our org. One is to the the Primary line and the other is our secondary line. We would like to connect both lines to pair of Fortinet Firewalls (HA config). We have an option to configure the Fortinet's in either Active/Passive or Active/Active. They are currently setup in an Active/Active config. Each Fortinet (models: Fortinet 200D) has two WAN ports (WAN1 and WAN2). I have a number of servers that will be Inet facing (each with with Public IP assigned by my Primary ISPs IP block). My secondary ISP also has assigned up a block of external IP addresses as well. My question is during a failover scenario how does the failover happen exactly for the external IPs? I'm assuming DNS needs to be updated externally, but wondering how to configure it so that it happens automagically... hope this makes sense and appreciate any feedback from community!

Thanks
Rechi
0
Comment
Question by:ric11003
  • 2
3 Comments
 
LVL 12

Accepted Solution

by:
Infamus earned 1500 total points
ID: 39663964
The best way is to use BGP but two ISP has to agree with the configuration.
0
 

Author Comment

by:ric11003
ID: 39664758
Thanks so much infamus. Really appreciate your feedback. Are you able to clarify the steps or config the two ISPs have to agree to exactly? I'm trying to figure out a solution that is the easiest to implement.
0
 
LVL 12

Expert Comment

by:Infamus
ID: 39665514
You will need to call back up ISP and tell them you need a failover solution.

There are different ways of configuring failover and they should have their preference.
0

Featured Post

Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
In this article, the configuration steps in Zabbix to monitor devices via SNMP will be discussed with some real examples on Cisco Router/Switch, Catalyst Switch, NAS Synology device.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

584 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question