Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Christian_89
Contributor III

Created on ‎01-28-2022 01:13 AM

Fortigate problem with 2 Wan connections 

Hello everyone

I have the following problem.
WAN1 is set up with a static IP.
WAN2 with a dynamic IP.
Default Moderate is that DHCP has a distance of 5 and Static has a distance of 10.
I adjusted the DHCP.
So now my problem is I am not getting any traffic over WAN2
If I change the distance to 10 or 5, WAN 2 works, but WAN 1 no longer works.
I've also tried administrative distances. Unfortunately also without success.
Does anyone have any other ideas or can I see something.
Thank you very much for your help
Labels:
6535
0 Kudos
4 REPLIES 4
AlexC-FTNT
Staff
Staff

Created on ‎01-28-2022 01:34 AM

Surprisingly, it often happens that one of the WAN links doesn't work. But also misconfigurations happen. Can you reach something over internet when using the source-ip of the wan2?

exec ping-options source x.x.x.x

exec ping fortiguard.com 

 

Then check the routing: get router info routing-table all

> when the problem happens. That will tell you where the traffic should go

 

And run a packet capture to see where the traffic actually goes. For example:
ping 8.8.8.8 from your PC, run a packet capture :

diag sniffer packet any "host 8.8.8.8 and icmp" 4 0 


- Toss a 'Like' to your fixxer, oh Valley of Plenty! and chose the solution, too00oo -
6482
0 Kudos
Christian_89
Contributor III

Created on ‎01-28-2022 03:44 AM

Yes, I can achieve everything via Wan2.

6476
0 Kudos
AlexC-FTNT
Staff
Staff
In response to Christian_89

Created on ‎01-28-2022 04:05 AM

That is not a valid answer without data to support it.
We can't guess what you are doing wrong without outputs. Since this is a public space, you may want to open a support case to get support.


- Toss a 'Like' to your fixxer, oh Valley of Plenty! and chose the solution, too00oo -
6474
0 Kudos
Debbie_FTNT
Staff
Staff
In response to Christian_89

Created on ‎01-28-2022 07:00 AM

Hey Christian,

do you have any kind of load-balancing set up between the two WAN links? FortiGate will not automatically utilize both WAN links; you will likely need some kind of SD-WAN link setup with both WAN interfaces to ensure FortiGate uses both links.

You can read up on SD-WAN deployment here for example:
https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/218559/creating-the-sd-wan-interface

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
6464
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.