Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
New Contributor

Configuring S2S link over dedicated link


Currently i have 2 branch offices connected with IPSEC site-to-site link, and all was working flawlessly.

Last time ISP proposed to us to setup a dedicated link for us.

Now everything is setup on ISP side, and we have deisgnated VLAN. Isp Prepared untagged port on their devices in both locations. 

Now im looking for the most efficent way to set this up. I would like to not use IPSEC over that link, to avoid bottlenecks. Link for the most part will be used to transfer VM backups between sites.

We would like to keep ipsec tunnel through WAN interfaces as a backup for connectivity. 

I Have 40F devices on both sides

Valued Contributor II

Hello @rlshd ,


You can use the ipsec tunnel on your wan interface and dedicated interface. If you want to create a backup connection on the wan link you have two options for that. 


You can configure sd-wan or link monitor. If you want to get more information about that, you can review these documents.


If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW

Hi @rlshd,

You can have 2 tunnels, 1 through WAN and 1 through the dedicated link. Please refer to this article:




Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Top Kudoed Authors