multiple VIPs with a single external ip

Forum|Forum|5 years ago
December 10, 2020
1 reply
2942 views

Hello, excuse the question but this fortigate topic is totally new to me, I hope you can support me with my next problem:
I have several servers published with external ips through VIPs, recently we hired another ISP but this one only allows us a single external IP unlike the other that provides us with several external IPs, I want to publish those same servers in my 2 ISPs for when one of my servers fails, they continue Available from the outside.
My equipment is a Frotigate 300E.
Thanks.....

emnoc

New Member

Not possible for 1-2-1 VIP put if you want to port-translate you could do that.

e.g

192.0.2.111 port 8080 -----INSIDE 192.168.11.100

192.0.2.111 port 8081 -----INSIDE 192.168.11.101

192.0.2.111 port 8082 -----INSIDE 192.168.11.102

192.0.2.111 port 8083 -----INSIDE 192.168.11.103

cfg

config firewall vip edit "server1" set extip 192.0.2.111 set mappedip "192.168.11.100" set extintf "wan1" set portforward enable set extport 8080 next end

config firewall vip edit "server2" set extip 192.0.2.111 set mappedip "192.168.11.101" set extintf "wan1" set portforward enable set extport 8081 next end

and so on

Why can't you just ask for more ip address? Most ISP gives a /28 or less out and the cost is free or a few dollars.

Ken Felix

Cruz2019Author

New Member

What I want is to have a backup ISP in case the main one fails, I currently have several servers which receive external requests but when my main ISP fails these servers are no longer available for external connections

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded