Fortinet Document Library

Version:

Version:

Version:

Version:

Version:


Table of Contents

Handbook

Configuring proximity route settings

The proximity route feature enables you to associate link groups with efficient routes. Proximity routes can improve user experience over the WAN because traffic is routed over fast routes.

You can use either or both of these methods:

  • Static Table—You specify the gateways to use for traffic on destination networks.
  • Dynamic Detection—The system polls the network for efficient routes. The algorithm selects a gateway based on latency.

If you configure both, the system checks the static table first for a matching route and, if any, uses it. If there is no matching static route, the system uses dynamic detection.

Before you begin:

  • You must have knowledge of IP addresses used in outbound network routes to configure a static route.
  • You must have Read-Write permission for Link Load Balance settings.
To configure a proximity route:
  1. Go to Link Load Balance > Link Group.
  2. Click the Proximity Route tab.
  3. Complete the configuration as described in Proximity route rule configuration.
  4. Save the configuration.

Proximity route rule configuration

Type Guidelines

Mode

  • Static Table First—Consult the static table first. If no match, use dynamic detection.
  • Static Table Only—Use the static table; do not use dynamic detection.
  • Dynamic Detect Only—Use dynamic detection; do not use the static table.
  • Disable—Do not use the proximity route configuration.

Static Table

Type

  • ISP—Use an ISP address object.
  • Subnet—Specify an IP netmask manually.

Routes that are specified manually have priority over ISP address object entries.

ISP Name

If you use the ISP configuration type, select an ISP address book configuration object.

If an address exists in multiple ISP address books, the route entries have priority as follows:

  1. User-defined entries.
  2. Entries from an address book that has been imported.
  3. Entries from the predefined address book (default for the firmware image).

IP Subnet

If you use the Subnet configuration type, specify a destination IP address and netmask.

Gateway

Select a gateway configuration object. The gateway must be able to route packets to the destination IP address that you have specified.

Dynamic Detect

Protocol

  • ICMP—Use ICMP to detect routes. Calculate proximity by the smaller RTT.
  • ICMP and TCP—Some hosts do not respond to ICMP requests. Specify this option to use both ICMP and TCP to detect routes and RTT. For TCP detection, port 7 (TCP echo) is used. A connection refused or connection reset by the destination is treated as successful detection.

Aging Period

The default is 86,400 seconds (24 hours).

Retry Number

The default is 3.

Retry Interval

The default is 3.

Configuring proximity route settings

The proximity route feature enables you to associate link groups with efficient routes. Proximity routes can improve user experience over the WAN because traffic is routed over fast routes.

You can use either or both of these methods:

  • Static Table—You specify the gateways to use for traffic on destination networks.
  • Dynamic Detection—The system polls the network for efficient routes. The algorithm selects a gateway based on latency.

If you configure both, the system checks the static table first for a matching route and, if any, uses it. If there is no matching static route, the system uses dynamic detection.

Before you begin:

  • You must have knowledge of IP addresses used in outbound network routes to configure a static route.
  • You must have Read-Write permission for Link Load Balance settings.
To configure a proximity route:
  1. Go to Link Load Balance > Link Group.
  2. Click the Proximity Route tab.
  3. Complete the configuration as described in Proximity route rule configuration.
  4. Save the configuration.

Proximity route rule configuration

Type Guidelines

Mode

  • Static Table First—Consult the static table first. If no match, use dynamic detection.
  • Static Table Only—Use the static table; do not use dynamic detection.
  • Dynamic Detect Only—Use dynamic detection; do not use the static table.
  • Disable—Do not use the proximity route configuration.

Static Table

Type

  • ISP—Use an ISP address object.
  • Subnet—Specify an IP netmask manually.

Routes that are specified manually have priority over ISP address object entries.

ISP Name

If you use the ISP configuration type, select an ISP address book configuration object.

If an address exists in multiple ISP address books, the route entries have priority as follows:

  1. User-defined entries.
  2. Entries from an address book that has been imported.
  3. Entries from the predefined address book (default for the firmware image).

IP Subnet

If you use the Subnet configuration type, specify a destination IP address and netmask.

Gateway

Select a gateway configuration object. The gateway must be able to route packets to the destination IP address that you have specified.

Dynamic Detect

Protocol

  • ICMP—Use ICMP to detect routes. Calculate proximity by the smaller RTT.
  • ICMP and TCP—Some hosts do not respond to ICMP requests. Specify this option to use both ICMP and TCP to detect routes and RTT. For TCP detection, port 7 (TCP echo) is used. A connection refused or connection reset by the destination is treated as successful detection.

Aging Period

The default is 86,400 seconds (24 hours).

Retry Number

The default is 3.

Retry Interval

The default is 3.