NAC & IoT Security

Expand all | Collapse all


  • 1.  FortiNAC HA

    Posted Nov 28, 2019 05:44 AM
    Hello team,

    I am setting up a HA of two FortiNAC (FortiNAC1 & FortiNAC2).
    The eth1 interfaces of each device have two differentes addresses but in the same network.

    For the DHCP of the isolation network, we have configured a DHCP relay on the Switch which does intervlan routing. The DHCP relay points to the eth1 address of the FortiNAC1. My concern is to know if the FortiNAC1 switchover and the FortiNAC2 took the hands (master), the DHCP relay becomes infunctional. how can we solve this problem?

    Thank you in advance.

  • 2.  RE: FortiNAC HA

    Posted Nov 28, 2019 06:55 AM
    For the L2 HA, we dont need to configure to différentes adresse on the device.
    only one (the same address on both interface) is enough.


  • 3.  RE: FortiNAC HA

    Posted Nov 29, 2019 11:42 AM
    Hello Sekou,

    You can point your dhcp relay relay to the FORTINAC1 and FORTINAC2, with this situation the FORTINAC2 will receive also the information but you will only use him when he will takeover the master role.

    Let's hope it's Ok for you as a 'trick' or maybe a diagram will be helpful.