manualshive.com logo in svg

Fortinet FortiSwitch-5003B, Системное руководство

Поделиться
Скачать
Fortinet FortiSwitch-5003B Скачать руководство пользователя страница 15

FortiSwitch-5003B system 

Enhanced Load Balance Clustering (ELBC)

FortiSwitch-5003B System Guide
01-400-134822-20120216

15

http://docs.fortinet.com/

Fabric 10-gigabit switching within a chassis

Figure 3

 represents two FortiSwitch-5003B boards installed in slots 1 and 2 and a 

FortiGate-5001B board installed in slot 4 in a chassis (for clarity the chassis is not 
shown). 

Using these components a chassis could provide 10-gigabit connectivity between the 
Internet and a private internal network. In the Figure, the Internet is connected to the 
FortiSwitch-5003B board in chassis slot 1 and the private internal network is connected 
to the FortiSwitch-5003B board in chassis slot 2. Traffic between these networks is 
switched across the chassis backplane to the FortiGate-5001B board for security 
processing.

Figure 3: Example 10-gigabit connection between a private internal network and the 

Internet

Enhanced Load Balance Clustering (ELBC)

You can install one or two FortiSwitch-5003B boards and multiple FortiGate-5001B 
boards (called worker boards) in a FortiGate-5000 chassis to create an ELBC cluster. An 
ELBC cluster load balances network traffic across the worker boards in the cluster 
resulting in a network security solution that provides very high throughput. ELBC clusters 
are also scalable because you can add more worker boards to the cluster without 
disrupting network traffic. Also, if one of the FortiGate units in the cluster fails, the traffic it 
was processing is re-distributed to the other worker boards in the cluster, resulting in only 
minimal service interruption. 

In an ELBC configuration the FortiSwitch-5003B board applies a load balancing 
algorithm against the source and/or destination address of received packets to generate 
a hash key. Each worker board has hash key values assigned to it and packets are 
forwarded to the worker blade assigned to the same hash key. If a worker board enters or 
leaves the cluster the hash keys are re-calculated and re-distributed so that all boards in 
the cluster receive a consistent amount of traffic.

1

Internal 10-gigabit
network connected 
to fabric channel 2

Fabric channel 1
10 Gigabit Data
Communication

Fabric channel 2
10 Gigabit Data
Communication

FortiGate-5001B 
Board Installed in 
chassis slot 4

External 10-gigabit
network connected 

to fabric channel 1

Slot 1

Slot 2

Slot 4

Содержание FortiSwitch-5003B

Страница 1: ...ions of this and all FortiGate 5000 series documents are available from the FortiGate 5000 page of the Fortinet Technical Documentation web site http docs fortinet com Access to Fortinet customer serv...

Страница 2: ...iGate 5000 series equipment Only perform the procedures described in this document from an ESD workstation If no such station is available you can provide some ESD protection by wearing an anti static...

Страница 3: ...t switching within a chassis 15 Enhanced Load Balance Clustering ELBC 15 Hardware installation 17 Installing SFP transceivers 17 Changing FortiSwitch 5003B SW2 switch settings 18 FortiSwitch 5003B mou...

Страница 4: ...nnect slot 1 2 33 Disabling the front panel F8 interface and enabling the slot 14 fabric interface 33 Changing the system time and host name 34 Changing the switch fabric channel configuration 34 For...

Страница 5: ...sis Guides page of the Fortinet Technical Documentation web site You can use the FortiSwitch 5003B board for fabric and base backplane layer 2 switching for FortiGate 5000 boards installed in slots 3...

Страница 6: ...nstalled in the same chassis as the FortiSwitch 5003B board The base backplane channel includes 13 1 gigabit connections to up to 13 other slots in the chassis Slots 2 to 14 if the FortiSwitch 5003B b...

Страница 7: ...addresses Multiple Spanning Tree Protocol MSTP IEEE 802 1s to support redundant FortiSwitch 5003B boards and external MSTP compatible switches Heartbeat between a FortiGate 5000 board and the FortiSwi...

Страница 8: ...a fault condition may exist ACC Disk activity Off or Flashing green The ACC LED flashes green when the FortiSwitch 5003B board accesses the flash disk The flash disk stores the current firmware build...

Страница 9: ...rect cable is connected to the base channel interface and the connected equipment has power Flashing Green Network activity at the base channel interface Off No link is established MGMT Link Act Left...

Страница 10: ...hem This interface shares the same switch port as the front panel F8 interface and is deactivated by default The FortiGate 5060 fabric backplane is a triply replicated mesh that results in additional...

Страница 11: ...e or connection 1 2 Interconnection interface between fabric channels 1 and 2 This LED is lit if there are two FortiSwitch 5003B boards installed in the chassis to indicate fabric backplane communicat...

Страница 12: ...lot 8 Not connected slot 9 Not connected slot 10 Not connected slot 11 Not connected slot 12 Not connected slot 13 Not connected slot 14 Not connected Table 8 FortiSwitch 5003B backplane mapping with...

Страница 13: ...be lit even if a shelf manager is present if the shelf manager is configured to use its front panel interface 1 2 slot 1 2 Interconnection interface between base channels 1 and 2 This LED is lit only...

Страница 14: ...heartbeat communication F1 to F8 SFP 10 gigabit or SPF 1 gigabit 10 gigabit full 1 gigabit auto 1 gigabit full Ethernet 10 gigabit SPF connection to 10 gigabit network or 1 gigabit SPF connection to 1...

Страница 15: ...o create an ELBC cluster An ELBC cluster load balances network traffic across the worker boards in the cluster resulting in a network security solution that provides very high throughput ELBC clusters...

Страница 16: ...5003B board in slot 1 fails all sessions are failed over to the FortiSwitch 5003B board in slot 2 with only a minimal traffic interruption To be able to form a cluster both of the FortiSwitch 5003B b...

Страница 17: ...nect the FortiSwitch 5003B front panel fabric or base channel interfaces to a network The SFP transceivers are inserted into cage sockets numbered F1 to F8 for the fabric channel or B1 and B2 for the...

Страница 18: ...cuit board is under the metal panel SW2 is located on the printed circuit board and is accessible through the small opening the metal panel as shown in Figure 5 Figure 5 Location of SW2 on the FortiSw...

Страница 19: ...ssis To change or verify the SW2 switch setting To complete this procedure you need A FortiSwitch 5003B board A tool for changing the SW2 switch setting optional Table 11 FortiSwitch 5003B SW2 setting...

Страница 20: ...mounting components to lock the board into place in the slot When locked into place and positioned correctly the board front panel is flush with the chassis front panel The board is also connected to...

Страница 21: ...closed and locked and retention screws fully tightened for the FortiSwitch 5003B board to receive power and operate normally If the FortiSwitch 5003B board is not receiving power the HS LED glows sol...

Страница 22: ...andle locks 5 Open the handles to their fully open positions Do not carry the FortiSwitch 5003B board by holding the handles or retention screws When inserting or removing the FortiSwitch 5003B board...

Страница 23: ...ront panel When the handles are fully closed they lock into place As the right bottom handle closes the microswitch is turned on supplying power to the board If the chassis is powered on the HS LED st...

Страница 24: ...An electrostatic discharge ESD preventive wrist strap with connection cord 1 Attach the ESD wrist strap to your wrist and to an ESD socket or to a bare metal surface on the chassis or frame 2 Disconn...

Страница 25: ...urn both handles to their fully closed positions When the handles are fully closed they lock into place 10 Carefully slide the board completely out of the slot 11 Re attach the protective metal frame...

Страница 26: ...5003B board For example From the web based manager go to the Unit Operation dashboard widget select Shutdown and then select OK From the CLI enter execute shutdown 2 Attach the ESD wrist strap to you...

Страница 27: ...the handles are fully closed and you have restarted the chassis and the FortiSwitch 5003B still does not start up the problem could be with FortiOS Connect to the FortiSwitch 5003B console and try cy...

Страница 28: ...Troubleshooting Hardware installation FortiSwitch 5003B System Guide 28 01 400 134822 20120216 http docs fortinet com...

Страница 29: ...You must also register your product for FortiGuard services such as FortiGuard Antivirus and Intrusion Prevention updates and for FortiGuard Web Filtering and AntiSpam Register your product by visiti...

Страница 30: ...2 Select Change 3 Enter a new IP address and netmask for the MGMT interface 4 Change administrative access as required 5 Select OK If you change the MGMT interface IP address you need to browse to thi...

Страница 31: ...s is 192 168 1 99 24 2 Start a terminal emulation program HyperTerminal on the management computer Use these settings 3 At the Login prompt type admin and press Enter twice no password required 4 Chan...

Страница 32: ...lly updates the FortiSwitch 5003B FortiOS firmware to include enhancements and address issues After you have registered your FortiSwitch 5003B security system see Registering your Fortinet product on...

Страница 33: ...rface and enabling the fabric backplane interconnect slot 1 2 Disabling the front panel F8 interface and enabling the slot 14 fabric interface Changing the system time and host name Changing the switc...

Страница 34: ...stem time settings and change the system host name Execute commands are also available for setting the system time and date and backing up the configuration Changing the switch fabric channel configur...

Страница 35: ...les examples FAQs technical notes and more Visit the Fortinet Knowledge Base at http kb fortinet com Comments on Fortinet technical documentation Send information about any errors or omissions in this...

Страница 36: ...r express or implied except to the extent Fortinet enters a binding written contract signed by Fortinet s General Counsel with a purchaser that expressly warrants that the identified product will perf...

Отзывы:

Нет отзывов

Бренды по названию

Популярные бренды

Загрузить еще бренды