Set up a private L3 network

Last update: August 21 2024

Combine a server in an A-DC and a dedicated server from different pools into a private network

To network a server in a private network in A-DC и dedicated server across pools utilized Selectel global router.

To connect to a global router, the dedicated server and FortiGatee must be connected to LAN switches in their pool and have a local VLAN assigned to their ports. Dedicated servers (except for some servers Chipcore Line) are connected to the default LAN switches. The FortiGate unit will be connected to the LAN switches for free when organizing the network through a global router.

A global router network diagram between a server in the A data center and a dedicated server:

Organize a private network via a global router

1. Create a ticket to connect the FortiGate in the A data center to the LAN. Specify in the ticket:

   • The FortiGate number of the FortiGate in the A data center. The number is listed on the unit card in the control panels in the format (neXXX);
   • The local port number on the FortiGate unit to connect to the LAN switch and the VLAN for that port.

2. В control panels select global router or create a new.

3. Connect the network and subnet to the global router to a dedicated server and to a FortiGate in the A data center. When creating a network to the FortiGate, select the Dedicated Server service and specify the desired VLAN.

4. Configure the FortiGate.

5. Configure a dedicated server.

6. Wait for the connection message.

Configure FortiGate

1. Open the FortiGate GUI.
2. Create and configure a local interface with a dedicated subnet. To do this, go to Network → Interfaces.
3. Click Create New → Interface.
4. Specify Type — Software Switch.
5. In the field Address Enter an IP address from a private subnet (for example: 192.168.100.1/24).
6. In the field Interface members Add the physical port that is connected to the server in the A data center.
7. Add a static route to the neighboring segment on the local interface. To do this, go to  Network → Static Routes.
8. Click Create New → IPv4 Static Route.
9. In the field Destination enter the CIDR of the neighboring segment.
10. In the field Gateway Address Enter the IP gateway address. This address is also specified when creating a subnet for the FortiGate unit in the control panel.
11. In the field Interface specify the local interface that was previously created.

Set up a dedicated server

1. Configure local ports to work with the created global router subnet:

   Linux

   Change the network settings on a dedicated server. It is not required to boot the server in Rescue mode and mount the OS file system.

   Windows

   1. Open it up Network and Sharing Center.
   2. Go to the section Change adapter settings.
   3. Right-click on the network adapter and click Properties.
   4. Select an item Internet Protocol Version 4 (TCP/IPv4).
   5. Configure the parameters IP address и Subnet mask.

2. Write the routes.