Due to additional security measures, we have implemented Multi-Factor Authentication (MFA) on this Support Portal. Please log in using your registered email ID or phone number. In case of any difficulty, kindly reach out to Seqrite Support by emailing us at "support@seqrite.com".

How-To Articles

How to configure Load Balancing and Fail-over in UTM

26-02-2020 13:34:58


A load balancer acts as the“traffic manager” sitting in front of your ISP and LAN client requests across all ISP capable of fulfilling those requests in a manner that maximizes speed and capacity utilization and ensures that no one ISP is overworked, which could degrade performance. If a single ISP goes down, the load balancer redirects traffic to the remaining live ISPs. In this manner, a load balancer performs the following functions:

  1. Distributes client requests or network load efficiently across multiple ISP.
  2. Ensures high availability and reliability by sending requests only to ISP that are live.
  3. Provides the flexibility to add or subtract servers as demand dictates.

Applicable Version: All


Fig 1 - 2 ISP lines connected on eth2 and eth3 have different bandwidth.

Here 2 ISP lines are configured on Seqrite UTM. ISP1 has 10 Mbps and ISP2 has 20Mbps bandwidth. There is a difference of bandwidth speeds in both the ISP lines and we need to load balance both ISP lines for optimum usage and load distribution.

1. Go to “Dashboard” - “Network” - “Load Balancing” option.

2. Under “Level” - Select - “Load Balancing”. Under “Weightage”- Enter number from (1-99).

NOTE: Weight can be set from 0 to 100 and specifies how much traffic is processed by an interface relative to all other interfaces. A weighted round-robin algorithm is used for this, a higher value meaning that more traffic is routed to the respective interface. The values are evaluated relative to each other so they need not add up to 100. Instead, you can have a configuration for example, where interface 1 has value 100, interface 2 has value 50. Here, interface 2 gets only half the traffic of interface 1.

3. After configuring “Load Balancing”. The “Interface” setting will look like this.


Fail-over is a backup operational mode in which the functions of a system component (such as a processor, server, network, or database, for example) are assumed by secondary system components when the primary component becomes unavailable through either failure or scheduled down time. Used to make systems more fault-tolerant, fail-over is typically an integral part of systems that must be constantly available. Fail-over in Seqrite UTM refers to using secondary WAN connection in case the primary default route of WAN traffic fails due to some issue.


Here 2 ISP lines are configured on Seqrite UTM on eth2 and eth3. Here, the requirement is to keep WAN-1 on eth2 as Default Route and configure WAN-2 on eth3 as Fail-over.

1. Go to “Dashboard” - “Network” - “Load Balancing”option.

2. Under “Level” - Select - “Default Route” for primary ISP. Select - “Fail-over” for secondary ISP.

3. After configuring “Default Route”& “Fail-over”. “Interface”setting will look like this.


1. Minimum fail-over check time can be set to 5 seconds.

2. WAN interface is to be selected.

3. Number of tries - It will try that many times before switching over the ethernet interface.

4. Number of success - Number of successful attempts so as not to switch the interface.

Please contact Seqrite Technical Support for more assistance