Fortinet black logo

Administration Guide

Zones and interface members (central management)

Zones and interface members (central management)

When central management is enabled, you can create SD-WAN zones and interface members in SD-WAN templates. You can select SD-WAN zones as source and destination interfaces in firewall policies. You cannot select interface members of SD-WAN zones in firewall policies.

A normalized interface is automatically created when you create an SD-WAN zone.

The default SD-WAN zone is named virtual-wan-link.

To create an SD-WAN zone:
  1. Ensure that you are in the correct ADOM and that SD-WAN central management is enabled for the ADOM.

  2. Go to Device Manager > SD-WAN > SD-WAN Templates.

    The templates are displayed in the content screen.

  3. Double-click a template to open it for editing, or click Create New.

    The SD-WAN template settings are displayed.

  4. In the Interface Members section, click Create New > SD-WAN Zone.

    The Create New SD-WAN Zone dialog box is displayed.

  5. In the Name box, type a name for the zone.
  6. Click the Interface Members box.

    The list of interfaces is displayed.

  7. Select the interfaces to be members of the zone, and click OK.
  8. Click OK to finish creating the zone.
To create an SD-WAN interface member:
  1. Ensure that you are in the correct ADOM and that SD-WAN central management is enabled for the ADOM.

  2. Go to Device Manager > SD-WAN > SD-WAN Templates.
  3. Double-click a template to open it for editing, or click Create New.

    The SD-WAN template settings are displayed.

  4. Create a new SD-WAN interface:
    1. In the Interface Member list, click the + icon.

      The Create New WAN Interface dialog box is displayed.

    2. In the Name box, type a name for the interface.
    3. In the Normalized Interface, select an interface.
    4. Complete the remaining options, and click OK.

      The SD-WAN interface is created.

  5. In the SD-WAN Zone box, select the zone.
  6. Click OK.

    The interface is added to the zone.

Zones and interface members (central management)

When central management is enabled, you can create SD-WAN zones and interface members in SD-WAN templates. You can select SD-WAN zones as source and destination interfaces in firewall policies. You cannot select interface members of SD-WAN zones in firewall policies.

A normalized interface is automatically created when you create an SD-WAN zone.

The default SD-WAN zone is named virtual-wan-link.

To create an SD-WAN zone:
  1. Ensure that you are in the correct ADOM and that SD-WAN central management is enabled for the ADOM.

  2. Go to Device Manager > SD-WAN > SD-WAN Templates.

    The templates are displayed in the content screen.

  3. Double-click a template to open it for editing, or click Create New.

    The SD-WAN template settings are displayed.

  4. In the Interface Members section, click Create New > SD-WAN Zone.

    The Create New SD-WAN Zone dialog box is displayed.

  5. In the Name box, type a name for the zone.
  6. Click the Interface Members box.

    The list of interfaces is displayed.

  7. Select the interfaces to be members of the zone, and click OK.
  8. Click OK to finish creating the zone.
To create an SD-WAN interface member:
  1. Ensure that you are in the correct ADOM and that SD-WAN central management is enabled for the ADOM.

  2. Go to Device Manager > SD-WAN > SD-WAN Templates.
  3. Double-click a template to open it for editing, or click Create New.

    The SD-WAN template settings are displayed.

  4. Create a new SD-WAN interface:
    1. In the Interface Member list, click the + icon.

      The Create New WAN Interface dialog box is displayed.

    2. In the Name box, type a name for the interface.
    3. In the Normalized Interface, select an interface.
    4. Complete the remaining options, and click OK.

      The SD-WAN interface is created.

  5. In the SD-WAN Zone box, select the zone.
  6. Click OK.

    The interface is added to the zone.