STATUSPAYLOAD OPERATION

 

 

Introduction

Warnings and cautions

FortiSwitch-5003 system

The FortiSwitch-5003 system

MANAGEMENT

E T H O

 

R S 2 3 2

 

Z R E 0

 

Z R E 1

 

Z R E 2

 

 

 

 

 

 

 

 

 

CLK OK

EXT INT FLT FLT

HOT SWAP

 

 

 

provides base backplane

 

SYSTEM CONSOLE

 

 

 

 

 

 

 

E0 E1

14 15

12 13

10 11

8 9

6 7

4 5

2 3

0 1 ZRE

RESET

LED MODE

 

 

 

 

 

 

 

 

 

 

communication between

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

FortiGate security boards installed in FortiGate-5140 or FortiGate-5050 chassis. Base backplane communication can be used for HA heartbeat communication and for data communication. The FortiSwitch-5003 board can also provide HA heartbeat and data communication between chassis. The FortiSwitch-5003 board is only used in FortiGate-5140 and FortiGate-5050 chassis. For details about the FortiSwitch-5003 board, see “FortiSwitch-5003 system” on page 61.

FortiGate-5005-DIST security system

The FortiGate-5005-DIST security system is

 

 

very similar to a single FortiGate unit, but with

5

 

much higher capacity and with support for

4

 

failover protection and scalability. The

3

 

FortiGate-5005-DIST security system consists

 

1

POWER

 

2

of a FortiGate-5050 or FortiGate-5140 chassis

SMC2

1

 

5050SAP

SMC

with one or two Input/Output or I/O boards (FortiController-5208 boards) and one or more worker boards (FortiGate-5005FA2 boards running in DIST mode). The I/O boards provide 10 gigabit and 1gigabit network connections and distribute traffic to the worker boards. The worker boards provide FortiGate security system functions including firewall, VPN, IPS, antivirus, antispam, and so on. For details about the FortiGate-5005-DIST security system, see “The FortiGate-5005-DIST security system” on page 67.

FortiController-5208 system

An integral part of a

 

 

DATA

 

 

CONTROL

 

 

 

X 1X 221

5

9

13

1

5

9

13

 

 

1

MANAGEMENTCOM 1COM 2

X 1

6

10

14

2

6

10

14

 

 

2

FortiGate-5005-DIST Security

 

 

 

 

 

 

 

1/2

 

3/4 D15/D16 C15/C16

 

X 2

3

7

11

D 15

3

7

11

C 15

 

 

3

 

4

8

12

D 16

4

8

12

C 16

 

 

4

 

 

10/100/1000 MBPS ETHERNET ACTIVITY

 

 

 

IPM

 

 

 

 

 

 

 

 

 

 

 

 

System, the FortiController-5208

board provides all Fortigate-5005-DIST 10gigabit and 1 gigabit network interfaces. The FortiContro0ller-5208 board also provides the management interface to the FortiGate-5005-DIST system and controls backplane communication between all FortiGate-5005-DIST components.

You can create a FortiGate-5005-DIST high-throughput multi-threat network security system using one or two FortiGate boards and multiple FortiGate-5005 boards in a FortiGate-5050 or FortiGate-5140 chassis. A FortiGate-5020 chassis cannot be used to create a FortiGate-5005-DIST system. Functionally, one or two FortiGate boards using the processing power of multiple FortiGate-5005 boards function much like a single FortiGate unit, but with far greater capacity. For details about the FortiController-55208 board, see “FortiController-5208 system” on page 73.

Warnings and cautions

Only trained and qualified personnel should be allowed to install or maintain FortiGate-5000 series equipment. Read and comply with all warnings, cautions and notices in this document.

FortiGate-5000 Series Introduction

 

01-30000-83466-20090108

11

Page 10 Page 12
Page 11
Image 11
Fortinet FortiGate-5000 manual Communication between, A FortiGate-5050 or FortiGate-5140 chassis
Page 10 Page 12
Top Page Image Contents