Fortinet black logo

Handbook

Home FortiGSLB Handbook

FortiWeb Integration with One-Click GSLB

FortiWeb Integration with One-Click GSLB

FortiGSLB can integrate with FortiWeb through the use of One-Click GSLB. This section covers the following:

By enabling One-Click GSLB, FortiWeb users can load-balance applications across multiple data centers according to server load/state, Geo-IP and latency. In such cases, you can publish this application using a single FQDN on FortiGSLB Cloud using one-click GSLB. The result is a single domain with multiple unique IP addresses corresponding the different data centers.

Packet Flow

  1. The client sends a DNS query to the FortiGSLB Cloud (www.test.com)

  2. FortiGSLB Cloud will redirect the user (based on the application Health Check) to the most available application according to the Geolocation, load, proximity, and service availability.

Configuration prerequisites

  • The account of FortiWeb’s license should have a valid FortiGSLB QPS license as well as a valid HealthCheck license.

  • To enable a connector, the account license of FortiWeb must match that of FortiGSLB Cloud

  • This feature is supported by FortiWeb version 7.4.2.

Configuration steps

  1. Enable FortiGSLB connector on FortiWeb.

    Go to Fabric Connectors > FortiGSLB, enable Status and set Server URL as “https://1clickfwb.fortigslb.com”. Click OK.

    If no issues arise, the Cloud Status under FortiGSLB Cloud Status should display as green. The Assigned DNS Server should be the primary anycast IP address assigned by FortiGSLB.

  2. Create a server policy on FortiWeb

    Go to Policy > Server Policy, click Create New to set up the server policy. In the New Policy page, enable One Click GSLB Server.

  3. Enter the Host Name of this FortiWeb appliance.

  4. Enter the Domain Name of your application (for example, "test.com").

  5. Depending on FortiWeb's role in your network, the Public IP address can be either one of the following:

    • If FortiWeb is deployed within a private network, and has a gateway (such as FortiGate) positioned in front of it (as illustrated below), you should enter the gateway's public IP in this setting. In scenarios involving multiple gateways connected to multiple FortiWeb appliances, you should activate the One Click GSLB Server feature in each FortiWeb appliance. Subsequently, specify the public IP address of the particular gateway in the corresponding FortiWeb's One Click GSLB Server settings.

    • If FortiWeb is directly connected to the Internet without a FortiGate, enter FortiWeb's public IP address in this setting. Note that in this scenario, the Public IP table can be left empty as the public IP address associated with the virtual server will be automatically pushed to FortiGSLB.

  6. Click OK at the bottom of the page. FortiWeb will periodically synchronize the One-Click GSLB Server settings with FortiGSLB Cloud to ensure that FortiGSLB Cloud always reflects the latest settings.

How to check the status of the FQDN on FortiGSLB Cloud

  1. Login to the FortiGSLB web GUI.

  2. Go to GSLB Services via the left side navigation bar, and click on the organization that contains the application for which you have configured One-Click. This opens the dashboard for the selected organization.

  3. Open the left navigation bar and go to GSLB Services.

  4. Click on the name of the newly created FQDN. This opens a modal window that display more details.

Troubleshooting

To troubleshoot connection errors between FortiWeb and FortiGSLB, log in to your FortiWeb account and go to Log&Report > Log Access > Event. Click Add Filter, select Message, and set the keyword to 'FortiGSLB'.

Previous
Next

FortiWeb Integration with One-Click GSLB

FortiWeb Integration with One-Click GSLB

FortiGSLB can integrate with FortiWeb through the use of One-Click GSLB. This section covers the following:

By enabling One-Click GSLB, FortiWeb users can load-balance applications across multiple data centers according to server load/state, Geo-IP and latency. In such cases, you can publish this application using a single FQDN on FortiGSLB Cloud using one-click GSLB. The result is a single domain with multiple unique IP addresses corresponding the different data centers.

Packet Flow

  1. The client sends a DNS query to the FortiGSLB Cloud (www.test.com)

  2. FortiGSLB Cloud will redirect the user (based on the application Health Check) to the most available application according to the Geolocation, load, proximity, and service availability.

Configuration prerequisites

  • The account of FortiWeb’s license should have a valid FortiGSLB QPS license as well as a valid HealthCheck license.

  • To enable a connector, the account license of FortiWeb must match that of FortiGSLB Cloud

  • This feature is supported by FortiWeb version 7.4.2.

Configuration steps

  1. Enable FortiGSLB connector on FortiWeb.

    Go to Fabric Connectors > FortiGSLB, enable Status and set Server URL as “https://1clickfwb.fortigslb.com”. Click OK.

    If no issues arise, the Cloud Status under FortiGSLB Cloud Status should display as green. The Assigned DNS Server should be the primary anycast IP address assigned by FortiGSLB.

  2. Create a server policy on FortiWeb

    Go to Policy > Server Policy, click Create New to set up the server policy. In the New Policy page, enable One Click GSLB Server.

  3. Enter the Host Name of this FortiWeb appliance.

  4. Enter the Domain Name of your application (for example, "test.com").

  5. Depending on FortiWeb's role in your network, the Public IP address can be either one of the following:

    • If FortiWeb is deployed within a private network, and has a gateway (such as FortiGate) positioned in front of it (as illustrated below), you should enter the gateway's public IP in this setting. In scenarios involving multiple gateways connected to multiple FortiWeb appliances, you should activate the One Click GSLB Server feature in each FortiWeb appliance. Subsequently, specify the public IP address of the particular gateway in the corresponding FortiWeb's One Click GSLB Server settings.

    • If FortiWeb is directly connected to the Internet without a FortiGate, enter FortiWeb's public IP address in this setting. Note that in this scenario, the Public IP table can be left empty as the public IP address associated with the virtual server will be automatically pushed to FortiGSLB.

  6. Click OK at the bottom of the page. FortiWeb will periodically synchronize the One-Click GSLB Server settings with FortiGSLB Cloud to ensure that FortiGSLB Cloud always reflects the latest settings.

How to check the status of the FQDN on FortiGSLB Cloud

  1. Login to the FortiGSLB web GUI.

  2. Go to GSLB Services via the left side navigation bar, and click on the organization that contains the application for which you have configured One-Click. This opens the dashboard for the selected organization.

  3. Open the left navigation bar and go to GSLB Services.

  4. Click on the name of the newly created FQDN. This opens a modal window that display more details.

Troubleshooting

To troubleshoot connection errors between FortiWeb and FortiGSLB, log in to your FortiWeb account and go to Log&Report > Log Access > Event. Click Add Filter, select Message, and set the keyword to 'FortiGSLB'.

Previous
Next