Fortinet FortiGate-5000 manual Communication between, A FortiGate-5050 or FortiGate-5140 chassis

Page 11
STATUSPAYLOAD OPERATION

 

 

Introduction

Warnings and cautions

FortiSwitch-5003 system

The FortiSwitch-5003 system

MANAGEMENT

E T H O

 

R S 2 3 2

 

Z R E 0

 

Z R E 1

 

Z R E 2

 

 

 

 

 

 

 

 

 

CLK OK

EXT INT FLT FLT

HOT SWAP

 

 

 

provides base backplane

 

SYSTEM CONSOLE

 

 

 

 

 

 

 

E0 E1

14 15

12 13

10 11

8 9

6 7

4 5

2 3

0 1 ZRE

RESET

LED MODE

 

 

 

 

 

 

 

 

 

 

communication between

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

FortiGate security boards installed in FortiGate-5140 or FortiGate-5050 chassis. Base backplane communication can be used for HA heartbeat communication and for data communication. The FortiSwitch-5003 board can also provide HA heartbeat and data communication between chassis. The FortiSwitch-5003 board is only used in FortiGate-5140 and FortiGate-5050 chassis. For details about the FortiSwitch-5003 board, see “FortiSwitch-5003 system” on page 61.

FortiGate-5005-DIST security system

The FortiGate-5005-DIST security system is

 

 

very similar to a single FortiGate unit, but with

5

 

much higher capacity and with support for

4

 

failover protection and scalability. The

3

 

FortiGate-5005-DIST security system consists

 

1

POWER

 

2

of a FortiGate-5050 or FortiGate-5140 chassis

SMC2

1

 

5050SAP

SMC

with one or two Input/Output or I/O boards (FortiController-5208 boards) and one or more worker boards (FortiGate-5005FA2 boards running in DIST mode). The I/O boards provide 10 gigabit and 1gigabit network connections and distribute traffic to the worker boards. The worker boards provide FortiGate security system functions including firewall, VPN, IPS, antivirus, antispam, and so on. For details about the FortiGate-5005-DIST security system, see “The FortiGate-5005-DIST security system” on page 67.

FortiController-5208 system

An integral part of a

 

 

DATA

 

 

CONTROL

 

 

 

X 1X 221

5

9

13

1

5

9

13

 

 

1

MANAGEMENTCOM 1COM 2

X 1

6

10

14

2

6

10

14

 

 

2

FortiGate-5005-DIST Security

 

 

 

 

 

 

 

1/2

 

3/4 D15/D16 C15/C16

 

X 2

3

7

11

D 15

3

7

11

C 15

 

 

3

 

4

8

12

D 16

4

8

12

C 16

 

 

4

 

 

10/100/1000 MBPS ETHERNET ACTIVITY

 

 

 

IPM

 

 

 

 

 

 

 

 

 

 

 

 

System, the FortiController-5208

board provides all Fortigate-5005-DIST 10gigabit and 1 gigabit network interfaces. The FortiContro0ller-5208 board also provides the management interface to the FortiGate-5005-DIST system and controls backplane communication between all FortiGate-5005-DIST components.

You can create a FortiGate-5005-DIST high-throughput multi-threat network security system using one or two FortiGate boards and multiple FortiGate-5005 boards in a FortiGate-5050 or FortiGate-5140 chassis. A FortiGate-5020 chassis cannot be used to create a FortiGate-5005-DIST system. Functionally, one or two FortiGate boards using the processing power of multiple FortiGate-5005 boards function much like a single FortiGate unit, but with far greater capacity. For details about the FortiController-55208 board, see “FortiController-5208 system” on page 73.

Warnings and cautions

Only trained and qualified personnel should be allowed to install or maintain FortiGate-5000 series equipment. Read and comply with all warnings, cautions and notices in this document.

FortiGate-5000 Series Introduction

 

01-30000-83466-20090108

11

Page 10 Page 12
Image 11
Page 10 Page 12
Contents FortiGate-5000 Series Product updates, technical support, and FortiGuard servicesTrademarks Contents FortiGate-RTM-XB2 system FortiGate-5050 chassisFortiGate-5020 chassis FortiGate-5001A security systemFortiGate-5005-DIST security system FortiSwitch-5003A systemFortiSwitch-5003 system FortiGate-5001SX security systemContents FortiGate-5000 Series Introduction Revision History IntroductionRevision history FortiGate-5050-R chassis on FortiGate-5050 chassis on About the FortiGate-5000 series chassisAbout About the FortiGate-5000 series boardsFortiGate-5001FA2 security system FortiGate-RTM-XB2 moduleA FortiGate-5050 or FortiGate-5140 chassis Communication betweenFortiGate-5000 Series Introduction Fortinet documentation About Data Center DC powerCustomer service and technical support Register your Fortinet product FortiGate-5140-R chassis Slot FortiGate-5140 chassis front panelSlot numbers FortiGate-5140 chassis back panelPhysical description of the FortiGate-5140 chassis FortiGate-5140 chassis FortiGate-5140 chassis back panel RTN 21 x 19 x 16.8 in .3 x 48.3 x 42.7 cm FortiGate-5050-R chassis FortiGate-5050 front panel Power LEDFortiGate-5050 chassis back panel FortiGate-5050 back panelPhysical description of the FortiGate-5050 chassis FortiGate-5050 chassis physical description DimensionsFortiGate-5050 chassis FortiGate-5050 chassis Weight Physical description of the FortiGate-5050 chassis FortiGate-5020 front panel FortiGate-5020 chassisPhysical description of the FortiGate-5020 chassis FortiGate-5020 physical description DimensionsPower dissipation FortiGate-5020 back panelFortiGate-5001A security system FortiGate-5001A-DW front panel Front panel LEDs and connectorsLists and describes the FortiGate-5001A LEDs LEDsFabric backplane communication ConnectorsLists and describes the FortiGate-5001A connectors Base backplane communicationFortiGate-RTM-XB2 AMC modulesFortiGate-ASM-FB4 FortiGate-RTM-XB2 system Front panel LED From the FortiGate-RTM-XB2 font panel includes a power LEDFortiGate-RTM-XB2 power LED State Description PowerFortiGate-5005FA2 front panel FortiGate-5005FA2 security systemStatus Lists and describes the FortiGate-5005FA2 board LEDsACT LinkAccelerated packet forwarding and policy enforcement Lists and describes the FortiGate-5005FA2 connectorsFA2 interfaces and active-active HA performance Base backplane gigabit communicationFortiGate-5005-DIST security system FortiGate-5001FA2-LENC front panel FortiGate-5001FA2-LENC security systemSTA Lists and describes the FortiGate-5001FA2-LENC board LEDsFortiGate-5001FA2-LENC board LEDs PWRState Description Link Lists and describes the FortiGate-5001FA2-LENC connectorsBase backplane gigabit communication FortiGate-5001SX front panel FortiGate-5001SX security systemFortiGate-5001SX LEDs Lists and describes the FortiGate-5001SX board LEDsBase backplane gigabit interfaces Lists and describes the FortiGate-5001SX connectorsBase backplane gigabit interfaces FortiSwitch-5003A system FortiSwitch-5003A front panel MGMT, B1 Lists and describes the FortiSwitch-5003A front panel LEDsSH1 Base channel interfacesCLI Fabric channel interfacesBase 10G Base and fabric gigabit switching within a chassis FortiSwitch-5003A configurationsFront panel connectors FortiSwitch-5003A base channel 1 HA heartbeat communication Fabric 10-gigabit switching within a chassisBasic link aggregation configuration Layer-2 link aggregation and redundancy configurationsFortiSwitch-5003 system CLK ZREINT FLT ResetAbout the ZRE network activity LEDs EXT FLTZRE1 Base backplane communicationsETH0 ZRE0Base backplane communications Base backplane communications FortiGate-5005-DIST security system Basic FortiGate security system configurationExample basic FortiGate-5005-DIST security system FortiController-5208 I/O boardsFortiGate-5005FA2 worker boards FortiGate-5005-DIST security system chassis Where FortiGate-5005-DIST interface namesFortiGate-5005-DIST interface names FortiController-5208 system Data Lists and describes the FortiController-5208 board LEDsFortiController-5208 board LEDs Payload OperationManagement ControlCOM1, COM2 Backplane gigabit interfacesD15, D16 C15, C16
Top Page Image Contents