Configuring virtual clustering with two VDOMs and VDOM partitioning – web-based manager

To configure VDOM settings for the cluster

1. Log into the web-based manager.

2. On the System Information dashboard widget, beside Virtual Domain select Enable.

3. Select OK and then log back into the web-based manager.

4. Go to System > VDOM and select Create New to add a new VDOM.

 

Name                                   Eng_vdm

5. Go to System > Network > Interfaces.

6. Edit the port5 interface, add it to the Eng_vdm VDOM and configure other interface settings:

Alias                                           Engineering_external

Virtual Domain                          Eng_vdm

IP/Netmask                                 172.20.120.143/24

7. Select OK.

8. Edit the port6 interface, add it to the Eng_vdm VDOM and configure other interface settings:

Alias                                           Engineering_internal

Virtual Domain                          Eng_vdm

IP/Netmask                                 10.120.101.100/24

Administrative Access             HTTPS, PING, SSH

9. Select OK.

 

To add a default route to each VDOM

1. Go to System > VDOM and Enter the root VDOM.

2. Go to Router > Static > Static Routes.

3. Change the default route.

Destination IP/Mask                 0.0.0.0/0.0.0.0

Gateway                                     172.20.120.2

Device                                         port1

Distance                                     10

4. Select Global.

5. Go to System > VDOM and Enter the Eng_vdm VDOM.

6. Go to Router > Static > Static Routes.

7. Change the default route.

Destination IP/Mask                    0.0.0.0/0.0.0.0

Gateway                                      172.20.120.2

Device                                         port5

Distance                                      10


Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

This entry was posted in FortiOS 5.4 Handbook and tagged , on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.