Specific Lan computer on Secondary Wan in Failover ?
Quasipeper
Newbie ✭
Did setup a Basic Failover on Tz-400
Failover is working when Primary 1 (x1) is down and all traffic from all the Lan is route to X2 Secondary Wan..
Since the secondary is a 5G Mobile is it possible to allow only specifig Computer to route to it ?
I don't want the whole Lan in failover…
Thanks
Category: Entry Level Firewalls
0
Best Answers
-
CORRECT ANSWER
BWC
Cybersecurity Overlord ✭✭✭
@Quasipeper the following should do the trick
- remove X2 from Failover and Load Balancing, because that's for all
- create a network group holding all PCs which do you like to get routed over X2 in failover
- create a new default route, source your new network group, interface x1, metric 1
- create a new default, source your new network group, interface x2, metric 2
These new routes will do the basic failover for you, restricted to the group of PCs.
All other traffics gets routed via the standard default route.
—Michael@BWC
1 -
CORRECT ANSWERBWC
Cybersecurity Overlord ✭✭✭
Yes, Address Object Group which holds the Address Objects of your selected PCs.
—Michael@BWC
0
Answers
Hi @Quasipeper
you can do with PBR (Policy Based Routing) rule.
Thx MITATONGE
In the PBR link it is set as Round-Robin..
I want the secondary Wan active only when Primary is down and allow only couple PC's to access it and not all Lan i don't know if Round-Robin do that ?
thx again
Andre
I'll try that thx for the info ;)
Just let us know if you need additional help. It might need some Network Monitors for logical interface probes, but this depends on the type of interface.
—Michael@BWC
Hello BWC
By —Create a a network Group you mean an Address Object Group ?