WAN failover when using policy base routing

Forum|Forum|3 months ago
February 28, 2026
1 reply
144 views

Hello Supoort,

I have a 80f fortigate that is connect to external customer (BOH) they a use Palto alto

We configured two VPN ( from my Fortigate to customer

(1) using a private lease name NDMA as primary link and the other is an internet connection

Because we are using policy base vpn am unable to configure SDWAN on the Fortigate.

My challenge if the primary link (NDMA) drops how do I fail over seamlessly to the other secondary link.

Thank you

FortiGate

AEK

SuperUser

Hi Jomof

If you create 2 PBR, the first uses the primary tunnel and the second uses the secondary tunnel, in case NDM goes down then the first tunnel goes down as well, and in that case the first PBR will not be effective and the second PBR will be the active one.

AEK

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded