Configuration Help IPSEC on secondary WAN interface

Forum|Forum|2 years ago
December 7, 2023
1 reply
3359 views

Hi,

I need some help for configuring an IPSec VPN tunnel on a Fortigate that has WAN1 and WAN2, configured as secondary with a bigger distance value.
We need to use WAN2 to configure a site-to-site ipsec, but I'm struggling with let it work; before adding the second connection on WAN2, it was configured on WAN1 without problem.

Any tips for me for the configuration?

Thanks!

FortiGate

hbac

Staff

Hi @enrico_l,

I believe you created a new tunnel for WAN2 but it is not coming up? A bigger distance value is controlled by the static route. Please refer to https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/432685/manual-redundant-vpn-configuration

Regards,

enrico_lAuthor

New Member

No, we have to different internet connections, and we want to use primary for users and normal traffic, the secondary to another company site to share local resources

hbac

Staff

@enrico_l,

Did you create a tunnel for WAN2 for sharing resources?

You need to make sure both WAN interfaces appears in the routing table. You can run this command to check "get router info routing-table all".

Regards,

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded