Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
thrasos_l
New Contributor

Created on ‎08-16-2021 08:34 AM

Single ISP with multiple WAN subnets shared between vDOMS?

Say I have an ISP that routes me additional public IP blocks via: 1.1.1.1/30

 

Public routed IP blocks:

2.2.2.2/27

3.3.3.3/27

 

The wan interface is currently associated to VDOM: A  

 

Is there a way to to share the 3.3.3.3/27 subnet with VDOM: B ?   I tried a emac-vlan link but that doesn't seem to allow me to route to the primary interface via the subinterface.

 

The way I would normally handle this is creating VLAN interfaces on a switch or router and serve them up to each VDOM as needed.

 

Thanks,

1928
0 Kudos
1 REPLY 1
lobstercreed
Valued Contributor

Created on ‎08-19-2021 03:49 AM

If I'm understanding this right, it seems like you could definitely create an inter-VDOM link between A and B, and put in a static route in VDOM A sending 3.3.3.3/27 to VDOM B via that link.  This assumes then that VDOM B uses the link as its default route (or at least part of an SD-WAN).

 

This does not avoid the traffic traversing VDOM A (i.e. go straight from ISP to VDOM B), if that's what you're trying to accomplish.  Pretty sure that wouldn't be possible without the ISP providing a separate /30 to VDOM B and routing 3.3.3.3/27 via that instead.

1529
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.