Fortinet black logo

Cookbook

Testing ISP failover

Copy Link
Copy Doc ID a4a06ec3-12a7-11e9-b86b-00505692583a:995272
Download PDF

Testing ISP failover

  1. To test failover of the redundant Internet configuration, you must simulate a failed Internet connection to one of the ports. You can do so by disconnecting power from the wan1 switch or otherwise disconnecting the wan1 interfaces of both FortiGates from ISP 1.
  2. Verify that users still have Internet access by navigating to Monitor > SD-WAN Monitor. The Upload and Download values for WAN1 show that traffic isn’t going through that interface.

  3. Go to Network > SD-WAN. In the SD-WAN Usage section, you can see that bandwidth, volume, and sessions have diverted entirely through WAN2.

    Users on the internal network shouldn’t notice the WAN1 failure. Likewise, if you’re using the WAN1 gateway IP address to connect to the admin dashboard, nothing should change from your perspective. It appears as though you’re still connecting through WAN1.

  4. After you verify successful failover, re-establish the connection to ISP 1.

Testing ISP failover

  1. To test failover of the redundant Internet configuration, you must simulate a failed Internet connection to one of the ports. You can do so by disconnecting power from the wan1 switch or otherwise disconnecting the wan1 interfaces of both FortiGates from ISP 1.
  2. Verify that users still have Internet access by navigating to Monitor > SD-WAN Monitor. The Upload and Download values for WAN1 show that traffic isn’t going through that interface.

  3. Go to Network > SD-WAN. In the SD-WAN Usage section, you can see that bandwidth, volume, and sessions have diverted entirely through WAN2.

    Users on the internal network shouldn’t notice the WAN1 failure. Likewise, if you’re using the WAN1 gateway IP address to connect to the admin dashboard, nothing should change from your perspective. It appears as though you’re still connecting through WAN1.

  4. After you verify successful failover, re-establish the connection to ISP 1.