Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 39 subscribers
  • Views 2423 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Moving WAN from one interface to antoher

BjørnEirik Marthinsen

Hi all, I have a SG330 setup with HA, and I've upgraded my internet connection requiring me to move my WAN traffic from one interface to another. I have quite a few addresses registered on the internet facing interface, and hence quite a few rules. Any way to do this efficiently with as little downtime as possible? I've inherited the setup, so there may be things I would miss if I'm doing this by hand.



This thread was automatically locked due to age.
Parents
  • 0

    Hi BjørnEirik,

    You will have to manually change each rule if you have multiple WAN links and you're moving one of them from one interface to another. If you only have a single WAN link, please change your Firewall rules to select WAN link load balance. Once you've changed your ISP link to a different interface, it will allow the internet to work find from WAN Link load balance. However, if you have your firewall rule configured to use additional addresses of the WAN link, you will have to manually change the rules.

    Regards

    Jaydeep

  • 0 in reply to Jaydeep

    @Jaydeep

    it should be a way to update the sql data in a single step and reduce or eliminate the effort. XG is using zone concept but still moving from one interface to another is a nightmare. Same thing if you want to move from a 1Gb NIC to a 10 Gb ethernet for LAN zone.

    Moving interfaces should be easier and not bind to a HW. This should be fixed very soon. If you have 50 rules, imagine the stress and the effort required!

Reply
  • 0 in reply to Jaydeep

    @Jaydeep

    it should be a way to update the sql data in a single step and reduce or eliminate the effort. XG is using zone concept but still moving from one interface to another is a nightmare. Same thing if you want to move from a 1Gb NIC to a 10 Gb ethernet for LAN zone.

    Moving interfaces should be easier and not bind to a HW. This should be fixed very soon. If you have 50 rules, imagine the stress and the effort required!

Children
Unfiltered HTML