Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Changuelco
New Contributor

SSL VPN Internet Access lost after WAN-LLB implementation

Hi guys!

 

Im running on a 200D (5.4.2) WAN LLB. Before this I had a SSLVPN, not split tunneling, to route all the internet traffic through the fortigate when connected. After the implementation of the WAN LLB Im not able to create a policy from ssl.root to WAN LLB. 

 

Any idea?

 

Regards,

--

Changuelco

-- Changuelco
3 REPLIES 3
pyy
New Contributor III

Hi Changuelco, WLB is a virtual interface and cannot support this configuartion as well policy route . I suggest to you to create a policy from ssl.root to one of the 2 wan interfaces and perform a policy route in order to route this traffic to internet ( example src ssl.subnet dst 0.0.0.0 0.0.0.0 to wan1). additional policy route should be added before this in order to stop the policy route for your local subnets .

 

 

Changuelco
New Contributor

That should be great... the only thing is when the WLB is configure, the interfaces attached to the WLB are not available to be selected on a firewall policy...

-- Changuelco
SteveG

Did you ever find a solution to this @changuelco?