D-Link Forums
The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: lingnau on September 23, 2011, 04:58:44 PM
-
Hello.
I´ve sucessfully implemented failover on a DFL-800.
Wan2 has metric 80 and monitor enabled via ICMP, wan1 has metric 85 and is not monitored.
All NAT rules have a interface group (Wan1and2) as destination interface..
After removing the network cable or phone cable from the modem that is used by Wan1 (PPPoE) the connection drops for a few seconds and is re-estabilished.
I have just one question about it tough:
Why when making a ping -t command against an external host (8.8.8.8) for example, does the ping go "down" during failover, but if I start a new ping against another external host (8.8.4.4) it works? (And once the original route is re-enabled, the ping starts responding again?)
I don't know if my question was clear enough..
-
DFL can't move open connection from first (died) wan to another. Connection should close itself (by application/PC established) and re-establish thru new wan
Pemanent ping (-t) keep the same connection for all packets
In ping case, it will never closed because "no response" is also response for ping
So, your schema is okay, ping -t is just special case
-
Thank you. I was already considering something like that was happening, I just didn't get why the computer wouldn't try a new connection, but as you explained, it's a ping characteristic. Thanks for the explanation.