Hello everyone,
I am new to the forum and Fortinet in general, so bare with me if this is an obvious mistake.
On a Fortigate firewall with updated firmware I have configured two WAN interfaces to work with SD-WAN rules that leave WAN1 as the main one and WAN2 as backup. This works fine.
However, I want to be able to ping WAN2 and redirect some of it's ports to internal clients, which is only working if WAN1 is down or if I switch the priorities around (otherwise the WAN2 ports are closed from the outside). I tried disabling all the port redirection policies and only try ping and ssh, but the problem persists.
The only relevant post I found is this unsolved one. Looking at the answers, I checked my default routes and I have two with destination 0.0.0.0, both of them with "Gateway Address" corresponding to the correct one of their interfaces (WAN1 and WAN2). Is this correct? Or should I have one with Interface as SD-WAN? What else should I check?
Thanks in advance
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
yes that is wrong. Kindly create the static route with the sdwan zone. Once you select interface under static routes. You should see an option for the zone you placed both WAN links in(virtual-wan-link)
Did you create the default route for each WAN link separately or are they both in the same zone(virtual-wan-link) as a default route? Kindly check that
Thank you for the reply. I created the static routes for each WAN to 0.0.0.0 separately. Is this wrong?
yes that is wrong. Kindly create the static route with the sdwan zone. Once you select interface under static routes. You should see an option for the zone you placed both WAN links in(virtual-wan-link)
Thanks a lot, that was the issue.
You are welcome.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.