Hi All,
Please forgive me if this is in the wrong section - I wasn' t sure which section to pick as my query covers a few of them 
Just a query - can anyone point me in the right direction to correctly config a FortiGate firewall. I' ve used it for 3 years now and it runs beautifully. However, we' ve had a new ADSL line installed and want to route traffic per Active Directory group (e.g. One group of users runs on one line (WAN1), the other on the next line (WAN2))
We' ve had authentication on the firewall since implementation however, I' ve tried (and failed) to get the two lines to run at the same time without hassles (I can route all traffic on one line, or the other, but not split concurrently). We make use of the dmz for our servers and is running without any issues after I reconfig' d the firewall.
Basically, our servers on static IP' s are set to route on the DMZ & all other authenticated users run to either WAN1 or WAN2, based upon their AD Organisational Group. I' ve got the servers running nicely (In the screenshot below, i' ve only added a static route for our Mail server to test the environment), and can choose ALL traffic to go to either WAN1 or WAN2 (Depending on the order of the policy rule...
If I remove the Policy Rule for WAN1 & 2, then traffic will only go to WAN1 (irrespective if the firewall policy is active on WAN2).
P.S. - We currently make use of the FSSO to apply our Firewall policies for filtering, etc.
Just a query - can anyone point me in the right direction to correctly config a FortiGate firewall. I' ve used it for 3 years now and it runs beautifully. However, we' ve had a new ADSL line installed and want to route traffic per Active Directory group (e.g. One group of users runs on one line (WAN1), the other on the next line (WAN2))
We' ve had authentication on the firewall since implementation however, I' ve tried (and failed) to get the two lines to run at the same time without hassles (I can route all traffic on one line, or the other, but not split concurrently). We make use of the dmz for our servers and is running without any issues after I reconfig' d the firewall.
Basically, our servers on static IP' s are set to route on the DMZ & all other authenticated users run to either WAN1 or WAN2, based upon their AD Organisational Group. I' ve got the servers running nicely (In the screenshot below, i' ve only added a static route for our Mail server to test the environment), and can choose ALL traffic to go to either WAN1 or WAN2 (Depending on the order of the policy rule...
If I remove the Policy Rule for WAN1 & 2, then traffic will only go to WAN1 (irrespective if the firewall policy is active on WAN2).
P.S. - We currently make use of the FSSO to apply our Firewall policies for filtering, etc.
