WAN Trunk for backup option?

GiuseppeR

Hello everyone,

I went on the webUI with 1.32 version and I see this:

and when I try to select the desired trunk I see these options:

I cannot see where I can say to the firewall that a specific WAN is only for backup.

For example you have WAN1, WAN2, WAN3.

WAN3 has a limited amount of GBs for the internet traffic so I need to make a trunk for WAN1+WAN2 and I have to tell the firewall to use WAN3 only when WAN1+WAN2 is down.

Spillover is not a backup option.

Fred_77

Hi @GiuseppeR

i have a similrar scenario: added wan1-wan2 mode active and wan3 as passive.

In my case it works .

Best regards

Lorenzo

GiuseppeR

Hello @Fred_77

is it possible to schedule also a WAN4 as backup of WAN3 with your scheme?

Do you set that scheme on prem?

Thanks in advance, best regards

Giuseppe

Fred_77

Hi @GiuseppeR

Honestly I have never tried with 4 WANs, but by choosing the right usage scheme I assume it is possible. So WAN1 and WAN2 as active, WAN3 and WAN4 as passive. WAN4 should be invoked when WAN3 is down.

I made my config on prem.

Regards

Lorenzo

PeterUK

Or you can setup routeing rules with Connectivity Check

Zyxel_Melen

Hi @GiuseppeR @Fred_77,

Trunk only support 1 passive in the trunk profile. May I know the scenario that need to use 2 WAN interface as passive role?

GiuseppeR

Hello @Zyxel_Melen

for example:

WAN1 is a FTTH

WAN2 is a FTTH from different ISP

WAN3 is a PPPoE via radio bridge

WAN4 is a 5G antenna with slow speed and only few gigs of traffic.

So WAN1 + WAN2 should go together, for example in WRR (routing needed only if some local IPs have to go on the internet with specific public IP and open ports)

WAN 3 is the main backup if the trunk WAN1 + WAN2 goes down.

If WAN3 is down too (radio bridge are stations linked to earth fiber, you could have disruptions made by floods) you have WAN4 to let some services survive using few gigs available.

PeterUK

Do the following

use Default Trunk

Make trunk WAN1 and WAN2

on Interfaces WAN1 and WAN2 Enable Connectivity Check to some where

make the following routing rules in order
1st
incoming any
next hop trunk with WAN1 and WAN2

2nd
incoming any
next hop WAN3
Enable Connectivity Check to some where

3rd
incoming any
next hop WAN4

I have not tested this but what I think should happen is WAN1 and WAN2 will be use if their Connectivity Check fails WAN3 will be used if WAN3 fails also WAN4 will be used until Connectivity Check is up on WAN1,2 or 3

PeterUK

So did some testing here and my way will not work due to routeing override the interface ping check

so either a change where by interface ping check override routing rule to fail it or when selecting next hop trunk ping check can be enabled and ping out interface listed in the selected trunk so that the routing rule fails to the next.

Zyxel_Melen

https://community.zyxel.com/en/discussion/comment/78273#Comment_78273

So WAN4 is the backup's backup. We will have a discussion and I will update you once I get further information.