Skip to main content
TomerDi1987
TomerDi1987
Visitor III
August 19, 2019
Question

VIP and nat

  • August 19, 2019
  • 1 reply
  • 2526 views

I have 3 WAN interface, I configure VIP Port 80 to internal server:

WAN1(isp1) -> port 80 to 192.168.17.1 port 80

WAN2(isp2) -> port 80 to 192.168.17.1 port 80

WAN3(isp3) -> port 80 to 192.168.17.1 port 80

 

My default route point to  WAN2 (ISP2)

 

When the client go to the server by the VIP I want:

traffic comes from any source to WAN1 will go back to the source from WAN1

traffic comes from any source to WAN2 will go back to the source from WAN2

traffic comes from any source to WAN3 will go back to the source from WAN3

 

any Idea how to do that ?

Is enable NAT on the policy will make sure that traffic will return from the same interface that arrived ?

    1 reply

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    August 20, 2019

    You need three default routes to all of them. As long as routes are there FGT should route return traffic back to where it's initiated.

    OneOfUs
    OneOfUs
    New Member
    August 21, 2019

    To add on to what Toshi stated, you may want to look at using ECMP:

    https://kb.fortinet.com/kb/viewContent.do?externalId=100137

     

    Terms & ConditionsAccessibility statement