I have a FortiGate 80F, and I've attempted to configure WAN failover.
Configuration:
internal1:
ip/mask: 192.168.3.99/255.255.255.0
dhcp range: 192.168.3.110-210
DNS: 8.8.8.8,8.8.4.4
wan1:
ip/mask (DHCP assigned): 192.168.1.21/255.255.255.0
dns/gateway: 192.168.1.1
distance: 10
wan2:
ip/mask (DHCP assigned): 192.168.2.110/255.255.255.0
dns/gateway: 192.168.2.254
distance: 20
Goal: All traffic should be routed through wan1 when it is up. Only while wan1 is down should traffic be routed through wan2.
Issues:
In other words, it doesn't appear that my FortiGate is directing traffic over to wan2 properly.
Troubleshooting:
When wan1 is up, the routing table:
Routing table for VRF=0
S* 0.0.0.0/0 [10/0] via 192.168.1.1, wan1, [1/0]
C 192.168.1.0/24 is directly connected, wan1
C 192.168.2.0/24 is directly connected, wan2
C 192.168.3.0/24 is directly connected, internal
When wan1 is down, the routing table:
Routing table for VRF=0
S* 0.0.0.0/0 [20/0] via 192.168.2.254, wan2, [1/0]
C 192.168.2.0/24 is directly connected, wan2
C 192.168.3.0/24 is directly connected, internal
I've also enabled snat-route-change
Thanks!
Solved! Go to Solution.
fixed it via support call. Policies needed to be updated.
fixed it via support call. Policies needed to be updated.
User | Count |
---|---|
1922 | |
1144 | |
769 | |
447 | |
277 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.