Fortinet black logo

SD-WAN Deployment for MSSPs

Home FortiGate / FortiOS 6.4.0 SD-WAN Deployment for MSSPs
6.4.0
7.2.0
7.0.0
6.4.0

Disabling route check in SD-WAN rules

Disabling route check in SD-WAN rules

Another alternative to using SD-WAN as a default route globally is to disable route check on per-rule basis.

For each SD-WAN rule where a valid route to the destination is not expected to exist (such as the RIA rules), you can enable the two advanced options gateway and default, as mentioned in the note in Using the default route via underlay.

This instructs the SD-WAN rule to bypass any route check, and forward the traffic unconditionally via the member selected by the configured strategy. Hence, if T_MPLS is selected in our RIA example, the Internet traffic will be backhauled via the Hub even if there is no default route learned via T_MPLS.

Previous
Next

Disabling route check in SD-WAN rules

Another alternative to using SD-WAN as a default route globally is to disable route check on per-rule basis.

For each SD-WAN rule where a valid route to the destination is not expected to exist (such as the RIA rules), you can enable the two advanced options gateway and default, as mentioned in the note in Using the default route via underlay.

This instructs the SD-WAN rule to bypass any route check, and forward the traffic unconditionally via the member selected by the configured strategy. Hence, if T_MPLS is selected in our RIA example, the Internet traffic will be backhauled via the Hub even if there is no default route learned via T_MPLS.

Previous
Next