Fortinet Comprehensive Guide to FortiController: Enhancing Network Performance in FortiGate Systems

Page 68

FortiController-5208 I/O boards

The FortiGate-5005-DIST security system

Figure 29: Example basic FortiGate-5005-DIST security system

Internet

NAT mode policies controlling 10G traffic between internal and external networks.

X2 (port1_X2)	FortiGate-5005-DIST
	security system in

204.23.1.5NAT/Route mode

5

4

3

2	POWER	Management
1		Management
SMC	SMC	interface (mng)
2	1
	X1 (port1_X1)
	192.168.1.99

Internal network

FortiController-5208 I/O boards

Data flows into and out of the FortiGate-5005-DIST system through the I/O boards. The I/O boards are FortiController-5208 boards installed in chassis slots 1 and 2 in a FortiGate-5050 or FortiGate-5140 chassis. The I/O board installed in slot 1 is configured as the primary I/O board. The optional I/O board installed in slot 2 becomes the secondary I/O board. A FortiGate-5005-DIST system can include one or two I/O boards.

As the I/O board, the FortiController-5208 provides all FortiGate-5005-DIST network connections. The FortiController-5208 board provides two 10 gigabit interfaces and four 1 gigabit interfaces for network traffic. The FortiController-5208 front panel also contains four 1 gigabit interfaces. Two of these interfaces support inter-chassis HA and two are for future use. Adding a second FortiController-5208 board doubles the number of FortiGate-5005-DIST network interfaces.

Figure 30: FortiController-5208 front panel

SFP Gigabit

Fiber or Copper

	X1 X2 XFP 10 Gigabit		D15	Management
		1 3	C15
	Fiber or Copper			RJ-45 Serial

			DATA				CONTROL
X 1	X 2	1	5	9	13	1	5	9	13			1	COM 1	COM 2
			6	10		2	6	10	14			MANAGEMENT	COM 1	COM 2
X 1		2	6	10	14	2	6	10	14	3/4	D15/D16	2
X 1		3	7	11	D 15	3	7	11	1/2	3/4	D15/D16	C15/C16
		3	7	11	D 15	3	7	11	C 15			3
X 2		4	8	12 D 16		4	8	12	C 16			4
		10/100/1000 MBPS ETHERNET ACTIVITY

STATUS	PAYLOAD OPERATION		IPM

Mounting	Status	Link/Traffic 2 4	C16	Mounting
Knot			D16	Knot
Extraction			IPM	Extraction
Lever			Management	Lever
	Link/ Payload		Management
	Traffic Operation		RJ-45 Ethernet

	FortiGate-5000 Series Introduction
68	01-30000-83466-20090108

Image 68

Contents Product updates, technical support, and FortiGuard services FortiGate-5000 SeriesTrademarks Contents FortiGate-5050 chassis FortiGate-5020 chassisFortiGate-5001A security system FortiGate-RTM-XB2 systemFortiSwitch-5003A system FortiSwitch-5003 systemFortiGate-5001SX security system FortiGate-5005-DIST security systemContents FortiGate-5000 Series Introduction Revision History IntroductionRevision history About the FortiGate-5000 series chassis FortiGate-5050-R chassis on FortiGate-5050 chassis onAbout the FortiGate-5000 series boards AboutFortiGate-RTM-XB2 module FortiGate-5001FA2 security systemCommunication between A FortiGate-5050 or FortiGate-5140 chassisFortiGate-5000 Series Introduction Fortinet documentation About Data Center DC powerCustomer service and technical support Register your Fortinet product FortiGate-5140-R chassis FortiGate-5140 chassis front panel SlotFortiGate-5140 chassis back panel Slot numbersPhysical description of the FortiGate-5140 chassis FortiGate-5140 chassis FortiGate-5140 chassis back panel RTN 21 x 19 x 16.8 in .3 x 48.3 x 42.7 cm FortiGate-5050-R chassis Power LED FortiGate-5050 front panelFortiGate-5050 back panel FortiGate-5050 chassis back panelFortiGate-5050 chassis physical description Dimensions Physical description of the FortiGate-5050 chassisFortiGate-5050 chassis FortiGate-5050 chassis Weight Physical description of the FortiGate-5050 chassis FortiGate-5020 chassis FortiGate-5020 front panelFortiGate-5020 physical description Dimensions Power dissipationFortiGate-5020 back panel Physical description of the FortiGate-5020 chassisFortiGate-5001A security system Front panel LEDs and connectors FortiGate-5001A-DW front panelLEDs Lists and describes the FortiGate-5001A LEDsConnectors Lists and describes the FortiGate-5001A connectorsBase backplane communication Fabric backplane communicationAMC modules FortiGate-RTM-XB2FortiGate-ASM-FB4 FortiGate-RTM-XB2 system From the FortiGate-RTM-XB2 font panel includes a power LED FortiGate-RTM-XB2 power LEDState Description Power Front panel LEDFortiGate-5005FA2 security system FortiGate-5005FA2 front panelLists and describes the FortiGate-5005FA2 board LEDs ACTLink StatusLists and describes the FortiGate-5005FA2 connectors Accelerated packet forwarding and policy enforcementFA2 interfaces and active-active HA performance Base backplane gigabit communicationFortiGate-5005-DIST security system FortiGate-5001FA2-LENC security system FortiGate-5001FA2-LENC front panelLists and describes the FortiGate-5001FA2-LENC board LEDs FortiGate-5001FA2-LENC board LEDsPWR STALists and describes the FortiGate-5001FA2-LENC connectors State Description LinkBase backplane gigabit communication FortiGate-5001SX security system FortiGate-5001SX front panelLists and describes the FortiGate-5001SX board LEDs FortiGate-5001SX LEDsLists and describes the FortiGate-5001SX connectors Base backplane gigabit interfacesBase backplane gigabit interfaces FortiSwitch-5003A system FortiSwitch-5003A front panel Lists and describes the FortiSwitch-5003A front panel LEDs MGMT, B1Base channel interfaces SH1CLI Fabric channel interfacesBase 10G Base and fabric gigabit switching within a chassis FortiSwitch-5003A configurationsFront panel connectors Fabric 10-gigabit switching within a chassis FortiSwitch-5003A base channel 1 HA heartbeat communicationLayer-2 link aggregation and redundancy configurations Basic link aggregation configurationFortiSwitch-5003 system ZRE CLKReset About the ZRE network activity LEDsEXT FLT INT FLTBase backplane communications ETH0ZRE0 ZRE1Base backplane communications Base backplane communications Basic FortiGate security system configuration FortiGate-5005-DIST security systemFortiController-5208 I/O boards Example basic FortiGate-5005-DIST security systemFortiGate-5005FA2 worker boards FortiGate-5005-DIST security system chassis FortiGate-5005-DIST interface names WhereFortiGate-5005-DIST interface names FortiController-5208 system Lists and describes the FortiController-5208 board LEDs FortiController-5208 board LEDsPayload Operation DataControl ManagementBackplane gigabit interfaces D15, D16C15, C16 COM1, COM2