Skip to main content
Xcage
Xcage
New Member
June 28, 2017
Question

Help with routing a client(PC on lan) through certain Wan ISP line

  • June 28, 2017
  • 1 reply
  • 5852 views

Hi all ,

 

So the issue or the help that i need is with routing a client on lan network only through certain wan isp line because he needs to have the external ip adress of that one specific isp.

Its a fortigate 90D unit with 6 different ISP lines all on WANLLB (load balanced) and i want to know how can i route someone from lan network only through certain wan ports or w.e you want to call them.

 

i assume its done using policy routing but have no idea how to do that, anyone can point me into the right direction?

1 reply

EMES
EMES
New Member
June 29, 2017

config router policy edit 0 set action permit set protocol 0

set src <IP OF User>

set dst 0.0.0.0/0 set gateway <ISP GATEWAY>

set input-device <Internal Interface> set output-device <ISP INTERFACE> set status enable next end

 

That should work and send all the users traffic that way.

Xcage
XcageAuthor
New Member
June 29, 2017
Thank you very much for help. That works the same like making a policy route using GUI ? If so how would I configure it so it only send certain traffic using certain interface for a certain user. For instance I want all ftp traffic to use for example wan1, and I do have all my users reserved up addresses and names if that helps
EMES
EMES
New Member
June 29, 2017

It is the same as the GUI yes, Heres another post adding a little more about it.

https://forum.fortinet.com/FindPost/150150

 

If you want all FTP traffic to flow that way the you would set the protocol to TCP and set the destination ports from 20 to 21. For the source you would set your internal subnet or subnets. If you have address objects of your internal subnets or groups, you can use those in the CLI but not in the GUI.

Terms & ConditionsAccessibility statement