Fortinet black logo

SD-WAN Deployment for MSSPs

Home FortiGate / FortiOS 6.4.0 SD-WAN Deployment for MSSPs
6.4.0
7.2.0
7.0.0
6.4.0

Excluding Traffic from SD-WAN

Excluding Traffic from SD-WAN

Note that even if you configure SD-WAN to act as a default route, as recommended throughout this guide, you can still exclude certain traffic from SD-WAN processing. The rule #1 helps you to achieve that.

By default, before selecting a member, SD-WAN rule will check whether the best route to the destination points to any SD-WAN member at all. If it doesn’t, this traffic will considered as out of SD-WAN scope, and hence it will be handled by the traditional routing.

A good use case is out-of-band management (OOB). As shown on the below diagram, SD-WAN acts as a default route, but there are more specific management prefixes learned via the OOB network.

This guarantees that all the traffic destined to those prefixes bypasses SD-WAN rule processing and is forwarded to the OOB network.

Previous
Next

Excluding Traffic from SD-WAN

Note that even if you configure SD-WAN to act as a default route, as recommended throughout this guide, you can still exclude certain traffic from SD-WAN processing. The rule #1 helps you to achieve that.

By default, before selecting a member, SD-WAN rule will check whether the best route to the destination points to any SD-WAN member at all. If it doesn’t, this traffic will considered as out of SD-WAN scope, and hence it will be handled by the traditional routing.

A good use case is out-of-band management (OOB). As shown on the below diagram, SD-WAN acts as a default route, but there are more specific management prefixes learned via the OOB network.

This guarantees that all the traffic destined to those prefixes bypasses SD-WAN rule processing and is forwarded to the OOB network.

Previous
Next