Route SSL VPN traffic

Forum|Forum|8 years ago
December 21, 2017
1 reply
10753 views

Hi

I'm new to fortinet. We have a fortigate 201E with 2 wans. I'm using both as Active-Passive using static route priority

I'm using active wan (wan1) interface for normal web traffic but I want passive interface (wan2) to be used for VPN. The problem is that incoming traffic comes from wan2 but the outgoing traffic routes through wan1 interface due to priority configuration

It's possible to route the incoming traffic that comes from wan2 through wan2 and not wan1?

thx!

Toshi_Esumi

SuperUser

WAN2's public IP from the ISP should be used to configure the other side of the VPN. Then it should work as you intend.

ede_pfau

SuperUser

I think you should looks into "Policy Routes". This is routes which do not only match destinations but source address and/or source, destination ports as well. Your SSL VPN should be unique enough to match only this traffic and divert it to WAN2.

jfernandezAuthor

New Member

Yes I tried to use policy routes but it didn't work. The only way I managed to work was to put a static route to the source ip address routing through the default gw of WAN2 but this is not a solution

thx all

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded