Chapter 14 Global Server Load Balancing (GSLB) 14.1 Overview GSLB (Global Server Load Balance) is also known as Smart DNS (SDNS). This function allows you to distribute Web traffic among a collection of servers deployed in multiple geographic locations. We will cover introduction of GSLB and the examples of GSLB […]
Chapter 5 High Availability (HA) 5.1 Overview As the network applications develop, customers have higher and higher requirements for the reliability of the network and network appliances. During network planning and design, to improve the reliability of the network, some critical network appliances must have redundancy protection mechanisms. The Clustering […]
Chapter 2 Advanced Network Configuration 2.1 Overview This section focuses on introducing the advanced network configurations, including VLAN, MNET, Port Forwarding, NAT, Dynamic Routing and IP Pool functionalities and configurations on the FortiBalancer appliance. 2.1.1 VLAN VLAN (Virtual Local Area Network) is used to logically segment a network into smaller […]
Certificate Management This section describes managing certificates with the FortiAuthenticator device. FortiAuthenticator can act as a CA for the creation and signing of X.509 certificates, such as server certificates for HTTPS and SSH, and client certificates for HTTPS, SSL, and IPSEC VPN. The FortiAuthenticator unit has several roles that involve […]
RADIUS Single Sign-On A FortiGate or FortiMail unit can transparently identify users who have already authenticated on an external RADIUS server by parsing RADIUS accounting records. However, this approach has potential difficulties: The RADIUS server is business-critical IT infrastructure, limiting the changes that can be made to the server configuration. […]
Fortinet Single Sign-On FSSO is a set of methods to transparently authenticate users to FortiGate and FortiCache devices. This means that the FortiAuthenticator unit is trusting the implicit authentication of a different system, and using that to identify the user. FortiAuthenticator takes this framework and enhances it with several authentication […]
Port-based Network Access Control Port-based Network Access Control (PNAC), or 802.1X, authentication requires a client, an authenticator, and an authentication server (such as a FortiAuthenticator device). The client is a device that wants to connect to the network. The authenticator is simply a network device, such as a wireless access […]
Authentication FortiAuthenticator provides an easy to configure authentication server for your users. Multiple FortiGate units can use a single FortiAuthenticator unit for remote authentication and FortiToken device management. FortiAuthenticatorin a multiple FortiGate unit network This chapter includes the following topics: l What to configure l User account policies l User […]
