Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ksleiwe
New Contributor

Dual WAN failover, failback on recovery

I have a pfsense configured with dual wan set up as failover. The primary would be my ISP (xfinity) and the backup is a slower 4G connection. I've tested the setup and can see that when the primary WAN (xfinity) goes down, traffic fails over to the slower 4G backup cinema hd.
However, I have noticed that when the primary recovers, pfsense does not switch traffic back and leaves traffic running off the slower 4G backup.
I have to manually down the backup interface for pfsense to redirect traffic back to the primary WAN. Is there a way to have failover to the backup 4G WAN but restore back to the primary xfinity WAN when it recovers automatically?
2 REPLIES 2
akristof
Staff
Staff

Hello,

 

Based on information you provided, my best guess is that the traffic is SNATed. So when primary link fails, session is forced to go via another ISP, because route stops to exist. But when primary link recovers, if session is SNATted, it is not forced (route still exist). This setting should help to resolve this:

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Routing-Changes-and-SNAT-snat-route-...

 

Adrian
gfleming
Staff
Staff

This is a Fortinet support forum. Are you using pfSense or FortiGate firewalls?

Cheers,
Graham
Labels
Top Kudoed Authors