Hi everybody
I have problem with Fortinet 300A which has placed in front-end firewall on back-to-back scenario.
I want to Load share and load balance two Internet Connection from two different ISPs.
The Port-6 is connected to back-end firewall ,port-2 is connected to ISP1 and Port-3 is connected to ISP2
I defined two Static routes (0.0.0.0/0.0.0.0) with the same distance to each Port-2 and Port-3
I have Access policy that allow Internal connection to External connection
and defined Server Ping to both ISPs
I dont' t have any Policy Route
Fault tolerance is correct,it means whenever I unplug one connection, alternate route is used
but load balancing doesn' t work
this means that forigate uses only its port-2 to route packets in normal time
please help me
Thanks in Advanced
Fortinets do not ' load balance' as such, you may have been misled by the sales jargon.
Basically, it cannot load-balance, instead, what you can do is tell traffic (using the policy routing) to use particular connections.
So you can specify certain matched traffic (which can be matched on any of source ip/dest ip/service) to use what connection you want.
So, for example, you could say, if traffic is http traffic, use the backup link.
or, if you have multiple internal subnets, you could say internal lan 1 uses the backup link.
Therefore the fortinets " load share" NOT " load balance" .
See this doc for the official description;
[link]http://kc.forticare.com/default.asp?id=376&SID=&Lang=1[/link]
Its a shame, but i believe its under development.
