Solved

Failover solution for two ISPs

Posted on 2013-11-20
3
285 Views
Last Modified: 2013-11-21
Hi,

I'm trying to figure out the best solution here. We have two ISPs providing Inet services for our org. One is to the the Primary line and the other is our secondary line. We would like to connect both lines to pair of Fortinet Firewalls (HA config). We have an option to configure the Fortinet's in either Active/Passive or Active/Active. They are currently setup in an Active/Active config. Each Fortinet (models: Fortinet 200D) has two WAN ports (WAN1 and WAN2). I have a number of servers that will be Inet facing (each with with Public IP assigned by my Primary ISPs IP block). My secondary ISP also has assigned up a block of external IP addresses as well. My question is during a failover scenario how does the failover happen exactly for the external IPs? I'm assuming DNS needs to be updated externally, but wondering how to configure it so that it happens automagically... hope this makes sense and appreciate any feedback from community!

Thanks
Rechi
0
Comment
Question by:ric11003
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 12

Accepted Solution

by:
Infamus earned 500 total points
ID: 39663964
The best way is to use BGP but two ISP has to agree with the configuration.
0
 

Author Comment

by:ric11003
ID: 39664758
Thanks so much infamus. Really appreciate your feedback. Are you able to clarify the steps or config the two ISPs have to agree to exactly? I'm trying to figure out a solution that is the easiest to implement.
0
 
LVL 12

Expert Comment

by:Infamus
ID: 39665514
You will need to call back up ISP and tell them you need a failover solution.

There are different ways of configuring failover and they should have their preference.
0

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How can I measure the quality of my Internet access? 2 91
ntpd client connection stats centos7 14 62
how to enable SSH in Nexus OS 1 32
BGP max path 2 1 18
SSL is a very common protocol used these days when browsing the web.  The purpose is to provide security to communication, but how does it do it?  There are several pieces at work that have to be setup before SSL will even work and it requires both …
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question