how to configure redudant link in fortigate firewall
Yesterday I set up a lab and tried to check whether the redundant link working fine or not. but it is not working. If the primary link goes down then all the traffic is being dropped at ISP end not moving towards another ISP which is TCL.
Let me tell you what I did in this lab on the FortiGate firewall.
1. Created one default route on firewall 0.0.0.0/0, Gateway 192.168.99.1, metric - 10.
2. Created second default route on firewall 0.0.0.0/0 Gateway 192.168.98.1, metric - 11.
3. Created separate policy for each ISP..
Then I tried to ping from LAN 22.214.171.124, it is working but whenever the primary link goes down then it doesn't work.
Please see the below diagram which will you understand easily.
Could you please make me why it is now working and what should I do If I want to have the redundant link in this lab?
your response will be more beneficial for me thank you in advance from my side.
Please try in this way, configure first default route with admin distance 1 and priority 10 and second default route with admin distance 1 and priority 11. So if primary link fails secondary link comes to picture.
You must have firewall policy with outgoing interface as both interfaces, so that when the traffic is going through secondary link, traffic will be allowed by firewall policy.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.