Hello Michael
Great to hear that all is working well. If BGP peering between 7k1 and fortigate goes down, then the firewall will not see the 7k1 as an option for routing traffic, so it will automatically use 7k2. This will take some time of course, until BGP reconverges, but you can adjust various parameters to improve on that. One of these is the BGP next hop address tracking about which you can read more here:
Now if the 7k1 fails, the firewall will detect this via the failure of the BGP peer, and all incoming traffic will go via the 7k2 switch. However, it is also possible to influence incoming traffic when both switches are running normally. You may want one switch to take a heavier load than the other. You can do this in several ways, but you must remember, if the AS you are connecting to is not administrated by use (it may belong to the ISP), then you don’t have ultimate control over incoming traffic routing, but you can attempt to influence it. You can do this by doing any of the following:
- Leaking more specific routes (smaller subnet masks)
- MED
- AS-PATH Prepending
- Community/Local Pref agreement
You can link to those lessons above if you find them useful.
I hope this has been helpful!
Laz