Improve the WAN Gateway monitor
Improve the WAN Gateway monitor. Add Latency thresholds, Packet Loss thresholds.
This can help much to prevent false positive gateway status.
The same feature could be added on VPN Failover system
Yup - still an issue. Basic functionality, not present.
5 years later, this idea is in the top 20 and not even under review :-(
it is ridiculous to sophos not that feature since all other manufacturers have had this for years.
Gabriel da Cruz Rostirolla commented
Agreed, and maybe add an status point red/green like the one there's in VPN IpSec connections and on the WAN Link Manager.
Agreed, failover is very limited currently due to this. And you can’t really force failover back if anything is using the connection either such as VoIP phones that register with a hosted vendor. Come on guys.
This can be quite useful.
This needs to be fixed before I leave fortigate
WAN Failover needs at least to have ranges
Example: Ping between 0 and 100 consider WAN up
Packet Loss would even be better
Example: Packet loss higher than 10% consider WAN down
The other vendors have these options, WAN Failover is pretty useless when a line can have a 2000 ping and 75% packet loss and still be considered up... These are the most common problems with the biggest carriers in the US such as comcast...
Please make this a priority.
Vikas Gupta commented
I have 2 WAN link and I have enabled the notification but I am getting Down and Up notification within seconds and there is no use of this notification if my link is going down for 2-3 seconds only. This gap should be at least 30 second to 1 Minute so that I can get true down notification.
Configuring gateway fail over that was only 2 option via Ping/TCP. This only when WAN ISP link was down then only we will not able to ping outside IP or TCP to particular port But i want if ISP having Up-link failure and facing degraded performance and slow response then in this case existing Gateway will not fail over to other active ISP gateway until and unless that existing WAN ISP was down. so i want Latency monitoring option in Gateway Failover so if Sophos detected any Latency on existing Gateway it will switch over to next available gateway. Appreciate if you can enable these feature or any alternative to come over these.
Rod Arthur commented
Please provide access to the WAN Gateway monitor graphs from Control Center Dashboard, rather than have to click through Network - WAN Link Manager to then finally get to the WAN Gateway Usage Graphs on RHS under Manage. On Cyberoam, these are available on the initial Dashboard allowing a quick check to see if the Backup Failover Gateway had activated in past day or week.
Massimo Forni commented
You can do it already in the Gateway Detail, Failover rules
Please Add a fail-over rule for Test like up to differen dns - server... if the connection times out / no answer, you know what to do... ;-)
Today I got one WAN - Link ping able (UP) but the Service Provider was not able to route ANY DNS REQUEST ( neither to the ISP-DNS nor the GOOGLE DNS 8888)
Ability to add an IP address out on the internet for monitoring the gateway would be good - my modem doesn't respond to ICMP
An Wan monitor like PFsense system, it would very cool and professional.