Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ABUELKHAIR
New Contributor III

Redundant Internet connection without load-balancing Active\Standby

I have FG40F and i want to do redandant internet connection Active\standby but i dont have static IP its DHCP from the ISP providers both ISP's are DHCP 

if they have static IP then its easy to add two static IP's with deferent priority but is it possible if i have DHCP ? And How 

 

Thanks 

5 REPLIES 5
Sam_FTNT
Staff
Staff

Hi @ABUELKHAIR,

 

This is possible with DHCP.

 

Create a static route for each ISP interface, set them both to the same distance, and the "standby" link to have an extra priority (such as 5)

 

Set defaultgw disable on the interface with DHCP

 

 

config system interface
    edit "port1"
        set vdom "root"
        set mode dhcp
        set allowaccess ping
        set type physical
        set defaultgw disable <------
    next

 

 

 

 

Create static default routes that are tied to DHCP:

 

 

config router static 
 edit 0
        set distance 5
        set device "port1"
        set dynamic-gateway enable
    next
  edit 0
        set distance 5
        set priority 10
        set device "port2"
        set dynamic-gateway enable
    next

 

 

NSE8#3306
ABUELKHAIR
New Contributor III

Actually i did that by changing the interface distance on WAN1 the primary to 5

And changed the interface distance on the secondary WAN to 10  

And i added link monitor 

 

FG61E (wan1) # get
name : wan1
addr-mode : ipv4
srcintf : wan1
server : "8.8.8.8"
protocol : ping
gateway-ip : 0.0.0.0
source-ip : 0.0.0.0
interval : 500
probe-timeout : 500
failtime : 5
recoverytime : 5
probe-count : 30
ha-priority : 1
update-cascade-interface: enable
update-static-route : enable
status : enable

 

 

After that all good now and Active\standby is working fine with no issues 

 

 
ABUELKHAIR

# get router info routing-table database
Codes: K - kernel, C - connected, S - static, R - RIP, B - BGP
O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
> - selected route, * - FIB route, p - stale info

Routing table for VRF=0
S 0.0.0.0/0 [10/0] via 192.168.22.1, internal3
S *> 0.0.0.0/0 [5/0] via 192.168.20.1, wan1

Julien87
Contributor II

Hi,

you can do it also with the sdwan feature. And add wan SLA to check the link availability.

 

Best regards,

 

Julien
Julien
Julien87

Julien
Top Kudoed Authors