Skip to main content
JMD07EuroR
JMD07EuroR
New Member
July 27, 2021
Question

Administration via WAN2 when WAN1 "default"

  • July 27, 2021
  • 1 reply
  • 8646 views

Hello FortiNet Community, new Forigate 60E user here and looking for your experience.

 

I am doing all this remotely and I'm 1000s of kms away, so I need to be SURE of configuration before I make a change and bring the network down or lose my access.

 

As mentioned, I have a Fortigate 60E with Dual WAN configured   WAN1 is the current primary connection (lower distance / priority) and WAN2 is a new ISP and what I eventually want to become the primary once I confirm everything is working appropriately.

I have confirmed WAN2 is functioning appropriately with a static route to a specific IP via WAN2 gateway. 

 

WAN1 is configured to administer via HTTP/HTTPS and working.   WAN2 is also configured to administer via HTTP/HTTPS and NOT working. Times out.

 

SSL VPN is also active, configured to listen on WAN1 and WAN2, but only working via WAN1.

 

Any insight to get either HTTPS admin / SSL VPN working (while WAN1 being primary route) is greatly appreciated.

 

Joe.

    1 reply

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    July 27, 2021

    You need a proper route(s) back to the source(s) toward wan2. Otherwise, ends with "reverse path check fail" because it tries going out via wan1. A way to do it is to set a static default route with higher priority value (lower priority). You can search on the internet "fortigate static route priority" to find a bunch of KBs and Cookbooks.

    JMD07EuroR
    JMD07EuroRAuthor
    New Member
    July 27, 2021

    Thank you for pointing me in the right direction Toshi, I will do some more reading :)

    Terms & ConditionsCookie settingsAccessibility statement