Hi,
If the FortiGate has 2 default route but with different priority like below:
config router static
edit 1
set device wan1
set gateway 192.168.208.29
set priority 10
next
edit 2
set device wan1
set gateway 192.168.208.30
set priority 20
next
end
Without the link-monitor configuration, can FortiGate failover to static route #2 when the static route #1 is unreachable?
Thanks
Arie
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
In your setting, both GWs are from the same vendor/ISP on wan1 interface. And it's providing the vendors GW redundancy in case the primary GW device goes down. (I'm assuming those GW devices are not yours.)
Link-monitor can take away static routes only per interface so it wouldn't work if both are on the same wan1.
To me you have to have a routing protocol set up with those two GW devices/neighbors to control the default routes. With static default routes, only thing you can do is when you noticed lost internet you would have to remove the primary default route manually.
Toshi
No. In this scenario all you can really do is use policy routes to manually steer traffic over the second link.
In your setting, both GWs are from the same vendor/ISP on wan1 interface. And it's providing the vendors GW redundancy in case the primary GW device goes down. (I'm assuming those GW devices are not yours.)
Link-monitor can take away static routes only per interface so it wouldn't work if both are on the same wan1.
To me you have to have a routing protocol set up with those two GW devices/neighbors to control the default routes. With static default routes, only thing you can do is when you noticed lost internet you would have to remove the primary default route manually.
Toshi
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1558 | |
1033 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.