Hot!Fortigate failover internet over 2 PPPOE connection

Author
alhashem
New Member
  • Total Posts : 6
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/06/02 04:28:06
  • Status: offline
2018/06/17 06:12:18 (permalink)
0

Fortigate failover internet over 2 PPPOE connection

Hi
i want to do a failover internet connection on 2 PPPoE internet connection and i do not want to use the default route that i will learn through PPPoe server. i want to see if my configuration will work on fortios 5.4.5:
 
1-setup pppoe username and password on the interfaces
2-DO NOT check the retrieve default gateway
3-create a 2 default route with same distance and dynamic-gateway feature enabled in CLI
4-create 2 link monitor on wan1 and wan2 (the interfaces that work on pppoe mode) and just set the srcinterface and server and protocol (i do not specify the gateway because i do not know the gateway ip and it can change over time)
4- create the related policies
 
#1

3 Replies Related Threads

    Toshi Esumi
    Expert Member
    • Total Posts : 960
    • Scores: 56
    • Reward points: 0
    • Joined: 2014/11/06 09:56:42
    • Status: offline
    Re: Fortigate failover internet over 2 PPPOE connection 2018/06/17 12:46:12 (permalink)
    0
    You got most of it already. If you want a failover you want to set a priority higher on the backup side of the default route.
    #2
    ede_pfau
    Expert Member
    • Total Posts : 5591
    • Scores: 376
    • Reward points: 0
    • Joined: 2004/03/09 01:20:18
    • Location: Heidelberg, Germany
    • Status: offline
    Re: Fortigate failover internet over 2 PPPOE connection 2018/06/17 14:49:06 (permalink)
    0
    You find the priority setting in Static route>Advanced. "priority" in FortiOS means "cost" so higher priority would denote the backup route. If you set the priority equal then traffic would use wan1 or wan2 alternatingly (load balance).
     
    If you put wan1 and wan2 into a zone (Network>Interface>New) then you'd have 2 advantages:
    1- only one set of policies instead of two
    2- in case of failover, the session does not need to be re-established as the zone interface has not changed, only one of it's members
    But, to be honest, I haven't tested if a zone can be used with PPPoE.
     
    BTW, you would benefit from an update to v5.4.9 - generally, not for this particular problem.

    Ede

    " Kernel panic: Aiee, killing interrupt handler!"
    #3
    alhashem
    New Member
    • Total Posts : 6
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/06/02 04:28:06
    • Status: offline
    Re: Fortigate failover internet over 2 PPPOE connection 2018/06/18 00:17:20 (permalink)
    0
    will my static routes and link monitor configuration work???
    i was not able to load balance traffic on the routes that i learned from PPPOE . i do not know if it was fortios bug or not. so i decide to create static route indivualy
     
    #4
    Jump to:
    © 2018 APG vNext Commercial Version 5.5