Technical Tip: How to configure 'Detect Interface Status for Gateway Load Balancing'
Description
This article explains how to configure 'Detect Interface Status for Gateway Load Balancing' when running v4.0 MR3 or v5.0.
Scope
FortiGate v4.0 MR3 and above.
Command 'config router gwdetect' has been removed in FortiOS 5.2 and replaced with 'config system link-monitor'
As mentioned above the command reference to configure interface to detect gateway for FortiOS version 6.2.1 and above is shown in the below example.
FortiGate CLI Reference.
Solution
In v4.0 MR2, the 'Detect Interface Status for Gateway Load Balancing' is an option found on the web-based manager in Network>Interface.
Following the release of FortiOS v4.0 MR3 this feature is available only as a CLI command. It can be configured using the following steps.
Check on the interface facing the internet whether fail-detect is enabled (by default it is enabled) and that the fail-detect-option is set to detectserver. To enable fail-detect:
config system interface
edit <interface name>
set detectserver <ping server IP> <--- #updated
set fail-detect enable
set fail-detect-option detectserver
end
To set the detection IP address:
config system link-monitor <--- #updated
edit <interface_name>
set server <Server_IP> <--- #updated
set server-type <static|dynamic> <--- #updated v7.2.0
set protocol {ping |tcp-echo | udp-echo}
end
edit "wan1"
set protocol ping
set server "4.2.2.2"
end