beautypg.com

Fortinet 5003 User Manual

Page 49

background image

FortiGate-5050 fabric backplane communication

Fabric gigabit switching within a chassis

FortiSwitch-5003A and 5003 Fabric and Base Backplane Communications Guide
01-30000-85717-20081205

49

For the FortiGate-5001A boards to use the fabric channel 2 for data
communication you must show backplane interfaces on the FortiGate-5001A
web-based manager and then configure firewall polices and routing for the fabric2
interfaces.

If the data traffic contains VLAN-tagged packets, you must add the VLAN tags to
the FortiSwitch-5003A interfaces that will handle the VLAN-tagged traffic. For
example, to allow VLAN tag 34 on slot 5 from the FortiSwitch-5003A CLI enter:

config switch fabric-channel interface

edit "slot-5"

set allowed-vlans 1,34

end

For more information about the FortiSwitch-5003A CLI, see

“FortiSwitch-5003A

CLI reference” on page 89

.

Figure 17

shows a FortiGate-5050 chassis with FortiSwitch-5003A boards in

hub/switch slots 1 and 2 and FortiGate-5001A boards in slots 3, 4, and 5. In this
configuration the FortiSwitch-5003A boards are operating as layer-2 switches for
fabric channels 1 and 2 and the FortiGate-5001A boards are operating as typical
standalone FortiGate units. The FortiGate-5001A boards can use fabric channels
1 and 2 for data communication among the FortiGate boards.

The chassis can be connected to the network using any of the FortiGate-5001A
front panel interfaces. You can also connect FortiSwitch-5003A front panel fabric
interfaces to the network. You can also install FortiGate AMC modules in the
FortiGate-5001A boards and connect the network to the AMC front panel
interfaces. The AMC modules and the network connections are not shown in

Figure 17

.

Figure 17: FortiGate-5050 fabric channel 1 and 2 data communication

For the FortiGate-5001A boards to use the fabric channels 1 and 2 for data
communication you must show backplane interfaces on the FortiGate-5001A
web-based manager and then configure firewall polices and routing for the fabric1
and fabric2 interfaces.

1

2

2

3

4

5

SMC

1

SMC

POWER

5050SAP

SERIAL

1

SERIAL

2

ALARM

10/100

link/Act

ETH0 Service

RESET

ST

ATUS

Hot Swap

link/Act

ETH0

ETH1

10/100

5000SM

10/100

link/Act

ETH0 Service

RESET

ST

ATUS

Hot Swap

link/Act

ETH0

ETH1

10/100

5000SM

Fabric channel 2
data communication

Fabric channel 1

data communication

See also other documents in the category Fortinet Computer Accessories: