load balancing of smtp servers

Forum|Forum|11 years ago
April 12, 2015
1 reply
12332 views

i have 2 smtp servers which is load balanced into one single ip single ip address.

we noticed that once we use the VIP for the smtp servers after doing load balancing in the fortigate, we will encounter some issues.

1st issue we saw was that instead of using the pre-assigned external ip address for smtp server, it will show the firewall wan ip address.

2nd issue is some mails will have issue sending out.

does fortigate load balance VIP supports smtp ?

i read the fortiOS handbook, it only talks abt http, there is no mention that smtp will work.

Christopher_McMullan

Staff

There are various levels of persistence and methods of load balancing. You're not tied to just using HTTP traffic.

Check the setting of 'nat-source-vip' on the VIP object, and try toggling it:

config firewall vip

edit <vip_name>

get | grep nat-source-vip

set nat-source-vip {enable | disable}

end

reto_gobat

New Member

Hello there

Did you solve your problem? Having the same issue here.

If we connect to the Load Balancing Virtual IP, the Firewall responds with it's own Interface IP instead of the client IP. This is a bit of a problem, because we would like to only allow relay from specific IP addresses.

Thanks

Carl_Wallmark

New Member

reto.gobat wrote:
Hello there

Did you solve your problem? Having the same issue here.
If we connect to the Load Balancing Virtual IP, the Firewall responds with it's own Interface IP instead of the client IP. This is a bit of a problem, because we would like to only allow relay from specific IP addresses.

Thanks

Hi,

I think you have NAT enabled on the firewall of the VIP ? If so, turn it off.

If it´s enabled, you would see the firewalls IP instead, just like you described it.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded