It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

How to Configure Automatic Failover Dynamic WAN Connections in Standby Mode

  • Last updated on

Only use this setup if you are using two WAN connections where the secondary connection is in Standby mode.  For all other setups, see How to Configure Link Balancing and Failover for Multiple WAN Connections or How to Configure Failover with Multiple xDSL or DHCP WAN Connections.

When using two Internet connections from the same ISP, both links cannot be active at the same time if they are connecting to the same remote network and using the same remote gateway IP address. Since it is not possible to have two default routes each using the same remote gateway, the backup uplink must be used in standby mode only and used if the primary connection goes down. A reachable IP is used to monitor the primary uplink. When the primary uplink becomes unavailable, a script is executed to activate the secondary uplink. Lowering the route metric of the secondary uplink ensures that the backup uplink is used. When the primary uplink becomes available again (probing is successful), a script will place the secondary uplink into standby again.

Step 1. Configure Two DHCP Connections

Configure two DHCP WAN connections. For more information, see How to Configure an ISP with Dynamic IP Addresses (DHCP)

For the primary and secondary DHCP uplink, use the following settings:

SettingPrimary DHCP ConnectionSecondary DHCP Connection
Link Activeyesyes
Standby Modenoyes
Route Metric10099

Step 2. Configure Connection Monitoring

  1. Go to CONFIGURATION  > Configuration Tree  > Box > Network.
  2. In the left menu, select xDSL/DHCP.
  3. In the left Configuration menu, select Switch to Advanced.
  4. Click Lock.
  5. In the DHCPv4 Links table, perform the following steps for the primary DHCP uplink:
    1. Edit the entry.
    2. In the Reachable IPs table, add the IP address that has been assigned for the connection from your ISP.
    3. Select Increase-Metric + Command as the Unreachable Action.
    4. Enter the following scripts:
      • Unreachable Command: /epb/openxdhcp start DHCP02
      • Re-reachable Command: /epb/openxdhcp stop DHCP02

        By default, DHCP02 is the name for the secondary uplink. If applicable, replace DHCP02 with the name that you specified for your secondary DHCP uplink.

    1. Click OK.
  6. Click Send Changes and Activate.

You can now see the active routes of the primary uplink and the pending route of the secondary uplink on the Control > Network page. If the primary uplink goes down, the first script is executed, thereby activating the secondary uplink. When the primary connection is available again, the second script is executed, which places the secondary link into standby mode again.