2 WAN but only allow certain subnet to use WAN 1, certain subnet to use WAN 2

Author
pg.ns
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/12/04 19:56:42
  • Status: offline
2018/12/04 20:01:26 (permalink)
0

2 WAN but only allow certain subnet to use WAN 1, certain subnet to use WAN 2

I am having 2 WAN with 2 different Telco on 60E. I have try to use policy to only allow subnet A to use WAN 1 to access internet by Telco A and subnet B to use WAN 2 to access the internet by Telco B. But I am not able to do that due to the static route of 0.0.0.0 /0.0.0.0 is route to WAN 2. Please advise is there a way, thanks
#1

3 Replies Related Threads

    sw2090
    Gold Member
    • Total Posts : 247
    • Scores: 8
    • Reward points: 0
    • Joined: 2017/06/14 01:27:25
    • Location: Regensburg
    • Status: offline
    Re: 2 WAN but only allow certain subnet to use WAN 1, certain subnet to use WAN 2 2018/12/04 23:22:31 (permalink)
    1 (1)
    maybe setting up a 2nd defaut route for wan1 with different metric/prio might help?
    #2
    lobstercreed
    Bronze Member
    • Total Posts : 33
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/11/28 14:57:58
    • Location: Sedalia, MO
    • Status: offline
    Re: 2 WAN but only allow certain subnet to use WAN 1, certain subnet to use WAN 2 2018/12/05 04:07:35 (permalink)
    0
    Hi pg.ns,
     
    Unfortunately Sebastian's suggestion won't work the way you want...it would only help in a failure of one ISP.
     
    You need to use policy routing to achieve what you're looking for.  However, it's important to note that you may black hole a subnet if that subnet's respective ISP fails without taking the link physically down.  That may be fine with you, but just keep that in mind.
     
    Here are some links that may help you:
     
    https://kb.fortinet.com/kb/viewContent.do?externalId=FD31240
     
    https://kb.fortinet.com/kb/documentLink.do?externalID=100116
     
    https://help.fortinet.com/fos50hlp/54/Content/FortiOS/fortigate-advanced-routing-54/Routing_Advanced_Static/Policy_Routing.htm
     
    - Daniel Hamilton
    #3
    sw2090
    Gold Member
    • Total Posts : 247
    • Scores: 8
    • Reward points: 0
    • Joined: 2017/06/14 01:27:25
    • Location: Regensburg
    • Status: offline
    Re: 2 WAN but only allow certain subnet to use WAN 1, certain subnet to use WAN 2 2018/12/05 05:50:53 (permalink)
    0
    well maybe I was too unclear :)
     
    I meant that additionally. Of course you also need a policy that allows traffic from out this subnet to internet only via corresponding wan.
    #4
    Jump to:
    © 2018 APG vNext Commercial Version 5.5