Example configuration with other FortiGate interfaces

FortiBridge operating principles

1Connect the FortiBridge-1000 INT 2 interface to the switch connected to the HA cluster internal interface.

2Connect the switch connected to the HA cluster external interface to the FortiBridge-1000 EXT 2 interface.

3Connect the internal network to the FortiBridge-1000 INT 1 interface.

4Connect the FortiBridge-1000 EXT 1 interface to the router.

Connecting the FortiBridge-1000F (fiber gigabit ethernet)

The FortiBridge-1000F unit contains 4 multimode fiber optic gigabit interfaces that connect to the internal and external networks and to the FortiGate cluster interfaces that were connected to these networks. Use the following steps to connect a FortiBridge-1000F unit to the network as shown in Figure 3.

1Connect the FortiBridge-1000F INT 2 interface to the switch connected to the HA cluster internal interface.

2Connect the switch connected to the HA cluster external interface to the FortiBridge-1000F EXT 2 interface.

3Connect the internal network to the FortiBridge-1000F INT 1 interface.

4Connect the FortiBridge-1000F EXT 1 interface to the router.

Example configuration with other FortiGate interfaces

All of the examples in this chapter describe using the FortiBridge unit to provide fail open protection for traffic passing between the FortiGate unit internal and external interfaces. You can actually use a FortiBridge unit to provide fail open protection for any two FortiGate unit interfaces. No limitation is implied by naming the FortiBridge interfaces INT and EXT. These names are used to simplify installation procedures. Figure 8 shows a FortiBridge-1000 unit providing fail open protection for network traffic between ports 5 and 6 of a FortiGate-500A unit.

Figure 8: FortiBridge unit providing fail open protection for a single FortiGate unit

(Normal mode)

Internal network

INT 1

INT 2

Port 5

EXT 1

Internet

EXT 2

Router

Port 6

 

-500A

(Transparent mode)

To connect a FortiBridge-1000 unit to the network shown in Figure 8:

1Connect the FortiBridge-1000 INT 2 interface to the FortiGate-500A port 5 interface.

2Connect the FortiGate-500A port 6 interface to the FortiBridge-1000 EXT 2 interface.

16

FortiBridge Version 3.0 Administration Guide

09-30000-0163-20061109

Page 15 Page 17
Page 16
Image 16
Fortinet Version 3.0 manual Example configuration with other FortiGate interfaces
Page 15 Page 17
Top Page Image Contents