Trunk configuration

Gel
Gel Posts: 20  Freshman Member
First Comment Friend Collector Second Anniversary
edited October 17 in Security

I have two WANs with 200MB Full each. How do I make it so that when WAN1 goes down, WAN2 goes up automatically?
Do I need to configure something in routing besides creating the trunk?
How do I create Trunk so it works this way?

I'm using the USG FLEX 200


Thanks

All Replies

  • zyman2008
    zyman2008 Posts: 219  Master Member
    25 Answers First Comment Friend Collector Seventh Anniversary

    Hi @Gel ,

    Just setup a Trunk and set it as default.

    1. Create a new Trunk. Set the primary link ac active mode and backup link as passive mode.

    2. Select this Trunk as default

  • Gel
    Gel Posts: 20  Freshman Member
    First Comment Friend Collector Second Anniversary
    edited October 18

    @zyman2008

    Thanks for the information. One more thing: In my corporate network I created a routing so that the internal LAN1 leaves via WAN1. With this change in the trunk that you told me about, what would this runting look like? Do I have to delete it? Or should I do some other configuration so that it works the way I said, if WAN1 goes down, WAN2 goes up and we don't run out of internet?

    Thank you very much for the help.

  • valerio_vanni
    valerio_vanni Posts: 91  Ally Member
    First Answer First Comment Friend Collector Second Anniversary

    Yes, this way LAN1 can go out only on WAN1.

    You should create another policy route for LAN1.

    #1 pointing to WAN1

    #2 pointing to WAN2

    Both with "healthy check". So, if WAN1 is working, #1 is used. When WAN1 is down, #1 gets disabled and #2 is used.

  • zyman2008
    zyman2008 Posts: 219  Master Member
    25 Answers First Comment Friend Collector Seventh Anniversary
    edited October 19

    Hi @Gel,

    Change the next-hop of this policy route to the new Trunk.

    Note: you need to enable and setup connectivity check in the primary interface.

    What valerio_vanni mentioned is also a solution.

    My preference is to use trunk to set up. It makes the policy route table cleaner. Too many rules often make it difficult for me to debug.

  • Gel
    Gel Posts: 20  Freshman Member
    First Comment Friend Collector Second Anniversary

    would it be like that? Instead of interface, put configured trunk

    Would this be a second option?

  • valerio_vanni
    valerio_vanni Posts: 91  Ally Member
    First Answer First Comment Friend Collector Second Anniversary

    Yes, trunk method is simpler than mine.

    You can SNAT to outgoing interfaces, I use the other method because I have to SNAT to different addresses.

  • Gel
    Gel Posts: 20  Freshman Member
    First Comment Friend Collector Second Anniversary

    Thank you everyone for the information. Next Saturday I will make the changes and see how the network behaves. Once again thank you all very much.

Security Highlight