Help
FortiADC
FortiADC enhances the scalability, performance, and security of your applications whether they are hosted on premises or in the cloud.
jcamacho1
Staff
Staff

Created on ‎01-11-2017 05:39 PM Edited on ‎01-23-2025 02:14 AM By Moderator

Article Id 190975

Troubleshooting Tip: How to resolve the L4 load balance no connectivity issue on FortiADC

Description

 

This article describes how to resolve the L4 load balance no connectivity issue on FortiADC.

 

Scope

 

FortiADC.

Solution

 

The 'DNAT packet forwarding method' only considers destination IP address translation, keeping the source IP address in the packet.
Real servers do not reach unknown networks nor have access to list control.

The procedure consists of changing the 'packet forwarding method' from 'DNAT' to 'full NAT' by applying the following changes on the device GUI:

 

  1. To configure an IP address with the same network segment of the real server as the 'source pool'.
    Go to Load Balance -> Virtual Server -> NAT Source Pool and configure the same address as 'from' and 'to' in the range then save changes.

  2. Go to Virtual Server, select 'VS-Name', select 'packet forwarding method' as 'full NAT' and select configured 'NAT Source Pool' from the NAT Source Pool list then save changes.


'Full NAT' allows DNAT plus SNAT translation.

For more information, it is possible to check this document: Using source pools.

Labels:
1351
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.