Skip to main content
ksleiwe
ksleiwe
New Member
November 21, 2021
Question

Dual WAN failover, failback on recovery

  • November 21, 2021
  • 2 replies
  • 3819 views
I have a pfsense configured with dual wan set up as failover. The primary would be my ISP (xfinity) and the backup is a slower 4G connection. I've tested the setup and can see that when the primary WAN (xfinity) goes down, traffic fails over to the slower 4G backup cinema hd.
However, I have noticed that when the primary recovers, pfsense does not switch traffic back and leaves traffic running off the slower 4G backup.
I have to manually down the backup interface for pfsense to redirect traffic back to the primary WAN. Is there a way to have failover to the backup 4G WAN but restore back to the primary xfinity WAN when it recovers automatically?

2 replies

akristof
Staff
akristof
Staff
November 23, 2021

Hello,

 

Based on information you provided, my best guess is that the traffic is SNATed. So when primary link fails, session is forced to go via another ISP, because route stops to exist. But when primary link recovers, if session is SNATted, it is not forced (route still exist). This setting should help to resolve this:

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Routing-Changes-and-SNAT-snat-route-change/ta-p/193787?externalID=FD40943

 

    gfleming
    Staff
    gfleming
    Staff
    September 29, 2022

    This is a Fortinet support forum. Are you using pfSense or FortiGate firewalls?

    Terms & ConditionsAccessibility statement