WAN failover does work but not with clients with a static IP

Michel
Michel Posts: 5  Freshman Member
First Comment
edited April 2021 in Security

Hello everyone,

I`m new here so let me introduce myself.
My name is Michel and i have been working with Zyxel devices for about 5 years.
I work at a small company with 15 employees.

Now my issue:

We have a USG110 with dual WAN setup.
Behind the USG is a domain network with 4 servers and 15 desktop clients.
The WAN failover is doing its job when the main WAN fails the backup line kicks in.
But only to the devices that have a dynamic IP assigned to them thru Windows Server 2012R2 DHCP.
For example : Our exchange server does not failover and cannot connect to the internet.( Exchange ofcourse has a static IP)
I`m able to ping the gateway , so i think there must be something wrong with the config of the zywall.
As soon as i enable DHCP on the Exchange server we are able to browse the internet again.
I have reserved the Exhange original static IP to the MAC adress of the server , so its getting the same IP thru DHCP.
Also the gateway , subnet, DNS adresses dont change.
This also work for all the clients.

Does anyone has any clue where to look ? I been busy with this for a few days but cant seem to isolate the problem.


Comments

  • Michel
    Michel Posts: 5  Freshman Member
    First Comment

    Oh , i forgot to mention when are running the latest firmware available.
    We already did an firmware upgrade as it was not running the latest firmware.

  • Jeremylin
    Jeremylin Posts: 166  Master Member
    First Anniversary First Answer First Comment
    edited October 2017
    Did you create the NAT rule for backup Wan interface?
    Moreover, if you can share what rules did you create, it helps to understand this case.
  • Michel
    Michel Posts: 5  Freshman Member
    First Comment
    I only created 3 rules
    RDP port  from WAN1 to LAN1.
    SMTP from WAN1 to LAN1
    SMTP from WAN2 to LAN1

  • Jeremylin
    Jeremylin Posts: 166  Master Member
    First Anniversary First Answer First Comment
    The situation I faced before, may I know what type of nat did you select?
    In this kind of scenario, you should select virtual server nat. If you select 1:1 nat, the traffic will flow to wan1 continually, even wan1 is down.
  • Michel
    Michel Posts: 5  Freshman Member
    First Comment
    It has been configured as 1:1NAT , when i select Virtual Server the port doesnt open.
  • Jeremylin
    Jeremylin Posts: 166  Master Member
    First Anniversary First Answer First Comment
    Select virtual NAT, and enter wan IP and server IP.
    Then choose "port" on port mapping type field and fill original port and mapped port.

Security Highlight