I'm setting up active/passive M590's (FireCluster) and I have primary and backup internet circuits. The WatchGuard documentation suggests using a switch in front of the firewalls to handle this setup.
Does anybody recommend a particular make and model of switch for this application?
Primary circuit speed is a Gig and secondary is a little less. All of the internet traffic will be directed to the primary circuit unless it goes down. Obviously it will be a managed switch but I was wondering if anybody had a preference.


    Hi @TimmyJimmy
    In my setup, I just use inexpensive 5 port gigabit switches for my external networks. It keeps the external side segregated from my internal side and also removes a single point of failure (if I'm using the same managed switch for all my external networks, for example.)

    I do still use managed switches, but those are set up on and only touch the inside trusted portion of my network.

