Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
thethakuri
New Contributor

Failover IPSec using SDWAN & VDOMs

Hi,

I have FortiGate-100E & FortiExtender setup locally in SDWAN. Similarly, FortiGate 30E & FortiExtender on remote site in SDWAN as well.

VDOM-A in FortiGate-100E connects to Internet through root VDOM. There's IPSec VPN between VDOM-A and remote site (DSL) using inter-vdom links, physical interfaces and VIPs. This works.

 

Now, I'd like to setup failover by creating additional tunnel between VDOM-A and 4G router in the remote site. I've created vpn tunnel in the remote site using pretty much same configuration except the interface is set to FortiExtender. This tunnel is not coming up.

 

Also, I'm using DDNS for both gateways. Any ideas, solutions, hints would be highly appreciated.

 

 

1 REPLY 1
boneyard
Valued Contributor

do you see the VPN traffic arrive at the other side? that would be the first thing to check.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors