Hello,
I have a setup with SD-WAN where I have multiple sites, on one of the sites I have two ISP connections.
To made failover I created Internet SLA to made failover possible.
So I created this in SD-WAN -> Performance SLAs
Last week the wan2 which was the active link went down (ISP told me they cut fiber cable during some repairs on the street).
The problem is that the failover didn't worked and I needed to move SD-WAN VPNs manually to wan1 link.
What I do wrong here ?
Hello @jackt,
I believe, this might help you,
Kindly check if this topology matches with yours and make necessary changes accordingly for failover to happen as expected.
Have a nice day!
Hi,
Unfortunatelly my topology is much different that the one in example.
The problem is that I inherited this setup and not sure if all has been set correctly.
I have two HUBs which this firewall is connecting to. This is main difference.
The wan2 link being down didn't switched VPN interface to wan1 which is up.
The only setting I suspect which may be reason for it is the "Update static route" which is disabled in the VPNs performance SLA. But Im not sure.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.