It is a best practice to create black hole routes with destinations set to each branch network. If the FortiGate temporarily loses connectivity with a branch network, traffic destined to that network is sent to the black hole until connectivity has been restored.
Each Black hole route includes:
dstto the branch network IP address
- Setting the
config router static
set dst 10.0.0.0/14
set distance 254
set blackhole enable