I have two fortigare 1000c units, and i’m in process to have teo internet links from the same isp and i want to apply BGP, and i have the following questions:
1- i will receive the default route from the isp through the two lines but i need to prefer the the WAN2 which is the second internet line from isp and in case the line is down use automatically to the first line, my question what bgp feature will be used? Or just use static route?
2- i will advertise my public subnet through the two lines but i will prefer some IPs within this subnet to prefer WAN1, what bgp feature to use to avhieve this? Or use policy based routing only?
3- currently i have enabled WAN load balancing, after applying the bgp and doing the points mentioned above, i think i should disable the WAN load balancing feature, right?
4- do i need to enable to activate some any SLAs mechanism in order to keep monitoring the WAN lines especially if we use static route? Or if we use receiving default route can solve thisissue?
5- i have static VPN tunnels with other companies, and i will create a loopback interface as tunnel source address and use one ip of my public subnet as the ip for the loopback interface instead of the WAN interfaces IPs to avoid creating two ipsec tunnels, right?
Thanks in advance
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.