Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 39 subscribers
  • Views 1521 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple public IP blocks

ecar13

I have just one internet service provider. From this ISP I have 3 blocks of public IP addresses, which means 3 different gateway addresses.

On the XG firewall I ended up creating 3 WAN interfaces - one for each Public block of IPs where one IP from each block is the gateway.

So now on XG network > WAN Link Manager I have 3 IPv4 Gateways.

I've been creating NAT rules for websites that fall into each of the 3 IP blocks so I know the IPs are working.

However any time I go to the WAN Link Manager page in XG, it always shows a green dot next to gateway 1 but gateways 2 and 3 always have a red dot. Why does XG tell me the gateways are "down"?

From outside, I am able to ping the 3 gateway IPs and as I mentioned, there are public IPs within each subnet that are fully functional.

(And by the way is there another way to get multiple blocks of public IPs into a single interface? From what I can tell XG will let you do this, but you can only have one gateway address. Doesn't the gateway address need to be one of the IPs in the (/27 for example) block?



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

     If the gateway failover rule is configured only to ping the gateway, can you try to add one more condition? 

    It could be ping to external IP addresses such as 8.8.8.8 or 1.1.1.1 or TCP connection to 4.4.4.2 on port 80.

    To configure failover conditions, do as follows:

    • Click Add to add a new failover rule. You can also edit an existing rule.
    • Enter the details for the rule.

      This screenshot shows an example rule. The rule states that if XG Firewall can't ping the gateway IP, 172.16.16.15, or establish a TCP connection on port 80 to 4.2.2.2, the gateway is considered down.

      Reference document: Configure gateway load balancing and failover

      Thanks,

  • 0 in reply to FormerMember

    I'm not necessarily looking for any type of failover. The 3 blocks of public IPs come from the same ISP and feed into my colo rack via one Ethernet cable. All I want is to be able to use all 3 blocks of Public IPs.

Reply Children
No Data
Unfiltered HTML