Refer to the exhibit. You deployed an HA active-active load balance sandwich with two FortiGate VMs in Microsoft Azure. After the deployment, you prefer to use FGSP to synchronize sessions, and allow asymmetric return traffic. In the environment, FortiGate port 1 and port 2 are facing external and internal load balancers respectively. What IP address must you use in the peerip configuration? (Choose one answer)

A. The public load balancer port 2 IP address.
B. The internal load balancer port 1 IP address.
C. The opposite FortiGate port 2 IP address.
D. The opposite FortiGate port 1 IP address.

Correct Answer: C

Brave-Dump Clients Votes

C 100%

Comments

Mr_Fortitito 2025-09-04 19:09:46

Selected Answers: C

Page 93 study guide, For port 2, which connects to the internal load balancer, the peer IP must be configured as the port 2 IP address of the other FortiGate unit. This configuration ensures that both internal interfaces can directly exchange information, enabling proper session synchronization. Such synchronization is essential in an active-active cluster, as it guarantees that ongoing sessions remain uninterrupted even if a failover event occurs.