Fortigate 50B

Posted on 2011-05-11
Last Modified: 2012-05-11

I have an SBS 2003 runing Exchange with SMTP not POP3. I have 2 WAN connections one over DSL other over Cable. Can the SMTP from the server switch from one WAN connection to the other automatically?
Question by:RodeRidder
    LVL 20

    Accepted Solution

    Do you mean if incoming mail to SBS 2003 configured on WAN1 can switch automatically to WAN2?
    I guess you have different static IPs on each WAN connection, and MX record is configured for WAN1 IP?

    You could try the following:
    run NSLOOKUP in CMD
    set type=mx

    you get something like this:      MX preference = 10, mail exchanger =      internet address= (WAN1 IP)

    With public DNS - you can try to add the following records:     MX preference = 20, mail.excehanger =    internet address = (WAN2 IP)

    then all email should go to WAN1 IP first, if that one is unavailable, it'll go to WAN2 IP

    Secondly, in Fortigate - create a new VIP for WAN2 IP - port 25 forward to SBS2003 local IP (same as VIP on WAN1) and create firewall rules accordingly
    LVL 11

    Expert Comment

    In the Fortigate firewall configuration you can set it up to load balance the traffic between each WAN port equally. However if your Fortigate is set as your DHCP server you cannot determine which computer uses what WAN connection.

    To properly load balance the traffic in the Fortigate configuration under the 'Router' > 'Static' configuration page you should see two settings for WAN1 and WAN2 just make sure you have the distance configured with equal settings. For example the default in the Fortigate is a distance of 10 if you configure both WAN ports with the same distance it will perform an equal load balance over each WAN device.  Then in the case one of your ISP connections goes down for any reason, the Fortigate will know the link is down and send all traffic over the WAN port.  

    Expert Comment

    I can not create 2 virtual ip's with the same port. I get the error "A duplicate entry already exists."
    What am i doing wrong?

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
    Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
    In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
    To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now