VIP on virtual wan interface

[yo9gly]

Hello,

Has anyone tried VIP on virtual wan interface (fortios 5.2) ?

Alin

[gabyrossi]

Hi there,
No not even that lab probe


does not work?

[yo9gly]

Hello,

Thank you for the answer.

No, unfortunately it doesn't work at all.

[gabyrossi]

Hi,

open a support ticket with fortinet

Regards.

[yo9gly]

I did it yesterday, after a short support online chat discussion , no answer yet

[yo9gly]

Well, VIP is working with some limitation for now.

If the interfaces members of virtual wan interface have dinamic IP (dhcp or pppoe) I cannot make VIP working (interface must be set any and the ip 0.0.0.0 =>no )

But is ok with static ip ( interface any , and ip of the interface.)

Alin

[gabyrossi]

Hi, yes.

Regards

[alejo35]

Hi,

I have fortigate 60D (OS 5.2) with virtual wan link,

I have no problem using dhcp (wan1) + static ip (wan2)

Virtual IP OK

show system virtual-wan-link

config system virtual-wan-link

set status enable

set load-balance-mode weight-based

config members

edit 1

set interface "wan1"

set weight 3

next

edit 2

set interface "wan2"

set weight 1

next

end

end



Saludos.

[yo9gly]

Hello,

Yes, you are right in this setup.
Is working propely, as I found afterwards, if you have ALL internet connected intefaces members of VWAN.


Take out the dhcp from VWAN and try VIP on it (mine was with pppoe , with no success).






Alin

[yo9gly]

I open a ticket, is a bug (confirmed) .
bug id 0258977

Alin

[CBaezLe]

Hi.

I'm currently having the same problem.

I updated the FortiWifi to the 5.2.2 version and everything works except for the VIPs, and I was wondering if you managed to solve the issue with the Fortinet Support.
And just FYI: The Wan Link Load Balance is configured with the Weighted Round Robin option.

Thank you in advance.

Spañol:
Hola.

Actualmente me encuentro con el mismo problema.

Actualicé el FortiWifi a la versión 5.2.2 y todo funciona, excepto la redirección de puertos con las VIPs (Virtual IP) y me preguntaba si alguien pudo solucionar el problema, porque estoy en el proceso de levantar el ticket nuevo.
Para su información: El Wan Link Load Balance está configurado con la opción de Weighted Round Robin.

Agradecido desde ya, los saludo aténtamente.

[yo9gly]

hello ,

Check if VIP have the set incoming interface (wan1 wan2 etc, not any)

[CBaezLe]

hello ,

Check if VIP have the set incoming interface (wan1 wan2 etc, not any)

It's Alive!

After changing the Incoming Interface to "ANY" in the VIP config, I was able to connect successfully.

Thank you very much yo9gly!

Español:

Luego de cambiar la interfaz de entrada a CUALQUIERA en la configuración de la VIP pude conectarme exitosamente.

Muchas gracias a todos en especial a yo9gly.

[yo9gly]

You are welcome.

Unfortunately, when virtual wan balancing is enabled ,and Highest Quality policy route are set ,VIP with ANY as interface must be used with precaution