D-Link Forums
The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: tecno13 on February 19, 2015, 09:29:07 AM
-
A regard to the splendid whole forum, has necessity of a small help, in the situation under:
wan1 fixed ip 8 routers public ip no nat ip router example 80.25.35.1 wan1-ip 80.25.35.2 other assigned ip and already ok (rules) for web, imap, pop. (all ok)
now I have the possibility to connect a second wan to the dfl-800 that has the characteristics under:
wan2 dynamic ip nat ip router 192.168.35.1 wan2-ip 192.168.35.2
I have tried the configuration but the servers they are not more accessible.
the second wan should work in case of malfunction of the wan1
thanks
-
Link>Welcome! (http://forums.dlink.com/index.php?topic=48135.0)
- What region are you located?
Internet Service Provider and Modem Configurations
- What ISP Service do you have? Cable or DSL?
- What ISP Modem Mfr. and model # do you have?
-
First, my own personal pet peeve, please do not double NAT, it is never worth it, it will make plants wither, your day will always be gloomy, and there is a risk of hair loss. In all seriousness, it is a bad idea, it will lead to issues at some point, and the risk of hair loss is real (you might pull it all out in frustration).
Now on to business...
Either way you will need to make sure your rules/policies allow the traffic over either WAN, I presume you have already done this half since you managed to get WAN1 working.
If this scenario is 100% failover (WAN2 need to work only when WAN1 is down), then adding route monitoring to the WAN1 default route will be sufficient. If your routes were added via the interface automatically, you will need to disable "automatic default route" on the interface and manually write the default route for WAN1. In this scenario you will find that traffic to your WAN2 IP fails until WAN1 is brought down, at which point WAN2 starts working.
If you wish to use both WANs at the same time, you will need routing rules specifying that traffic coming in over WAN2 should return over WAN2. This will entail a second routing table where the order of the default routes is reversed and a routing rule directing return traffic destined to WAN2 to that table. Take note when writing the routing rule, that the routing rule matches based on your main routing table for destination interface, so your destination interface will need to match the first match on your full routing table (check the all routes checkbox in status routes to see the full version) for your WAN2 IP.
Good Luck!
-
Hi,
DFL-800_Howto_de_wan-failover.zip (ftp://ftp.dlink.eu/Products/dfl/dfl-800/documentation/DFL-800_Howto_de_wan-failover.zip) provides a description how to configure WAN failover. Unfortunately it's written in German, but every step also provides a screenshot that allows to understand it without reading the text. Hope this may help.
PT
-
thanks of the answers.
the two connections wan are not dsl of two different isps the first one with fix ip and the second no
two routers serious cisco 800
-
Hi ALL:
I have a problem , I have 2 DFL 860-E , and I want to use both of them on the same internet Gateway
When I make that everything is going well except the VPN tunnels created between any one of them and a third one did not get up !!
Only one DFL at atime can connect to the third FW by the VPN... Any help please !!