Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiManager 6.4.12 Administration Guide
    6.4.12
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.7
    5.2.6
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3
    5.0.2
    4.3.8
    4.3.7
    4.3.6
    4.3.5
    4.3.4
    4.3.3
    4.3.2
    4.3.1
    4.3.0
    4.2.9
    4.2.8
    4.2.7
    4.2.6
    4.2.5
    4.2.4
    4.2.3
    4.2.2
    4.2.1
    4.2.0
    4.1.0
    4.0.3
    4.0.2
    4.0.1
    4.0.0

    Performance SLA (central management)

    Performance SLA (central management)

    Create a Performance SLA in FortiManager that can be used to monitor the SD-WAN performance in FortiGate devices. You can also create a Performance SLA in FortiManager. If all links meet the SLA criteria, the FortiGate uses the first link, even if that link isn’t the best quality. If at any time, the link in use doesn’t meet the SLA criteria, and the next link in the configuration meets the SLA criteria, the FortiGate changes to that link. If the next link doesn’t meet the SLA criteria, the FortiGate uses the next link in the configuration if it meets the SLA criteria, and so on.

    To create a new performance SLA:
    1. If using ADOMs, ensure that you are in the correct ADOM.
    2. Go to Device Manager > SD-WAN > SD-WAN Template.
    3. Click Create New in the content pane toolbar, or right-click and select Create New. The Create New page opens.
    4. In the Performance SLA toolbar, click Create New. The Create Performance SLA dialog-box opens

    5. Enter the following information, and click OK to create the performance SLA:

      Name

      Enter the name of the performance SLA.

      Detect ProtocolSelect the detection method for the profile check:
      • Ping
      • TCP ECHO
      • UDP ECHO
      • HTTP
      • TWAMP
      Detect ServerEnter the IP address of the WAN interface that you want to monitor.
      MemberSelect available interface members. The interfaces must already be added to the template.
      SLA

      Click Create New to create a new SLA. Enable and enter the Jitter Threshold (in milliseconds), Latency Threshold (in milliseconds), and Packet Loss Threshold (in percent), then click OK to create the SLA.

      SLAs can also be edited and deleted as required.

      Link Status

      Interval

      Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 1).

      Failure Before Inactive

      Specify the number of failures before the link becomes inactive (1 - 10, default = 5).

      Restore Link After

      Specify the number of successful responses received before server is considered recovered (1 - 10, default = 5).

      Action When Inactive

      		Specify what happens with the WAN link becomes inactive.

      Update Static Route

      		Select to update the static route when the WAN link becomes inactive.

      Cascade Interfaces

      		Select to cascade interfaces when the WAN link becomes inactive.

      Advanced Options

      addr-mode

      Address mode (IPv4 or IPv6).

      http-get

      URL used to communicate with the server if the protocol if the protocol is HTTP.

      http-match

      Response string expected from the server if the protocol is HTTP.

      interval

      Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 5).

      packet-size

      Packet size of a TWAMP test session (64 - 1024).

      threshold-alert-jitter

      Alert threshold for jitter (ms, default = 0), range [0-4294967295].

      threshold-alert-latency

      Alert threshold for latency, in milliseconds (0 - 4294967295, default = 0).

      threshold-alert-packetloss

      Alert threshold for packet loss, in percent (0 - 100, default = 0).

      threshold-warning-jitter

      Warning threshold for jitter, in milliseconds (0 - 4294967295, default = 0).

      threshold-warning-latency

      Warning threshold for latency, in milliseconds (0 - 4294967295, default = 0).

      threshold-warning-packetloss

      Warning threshold for packet loss, in percent (0 - 100, default = 0).

    Previous
    Next

    Performance SLA (central management)

    Performance SLA (central management)

    Create a Performance SLA in FortiManager that can be used to monitor the SD-WAN performance in FortiGate devices. You can also create a Performance SLA in FortiManager. If all links meet the SLA criteria, the FortiGate uses the first link, even if that link isn’t the best quality. If at any time, the link in use doesn’t meet the SLA criteria, and the next link in the configuration meets the SLA criteria, the FortiGate changes to that link. If the next link doesn’t meet the SLA criteria, the FortiGate uses the next link in the configuration if it meets the SLA criteria, and so on.

    To create a new performance SLA:
    1. If using ADOMs, ensure that you are in the correct ADOM.
    2. Go to Device Manager > SD-WAN > SD-WAN Template.
    3. Click Create New in the content pane toolbar, or right-click and select Create New. The Create New page opens.
    4. In the Performance SLA toolbar, click Create New. The Create Performance SLA dialog-box opens

    5. Enter the following information, and click OK to create the performance SLA:

      Name

      Enter the name of the performance SLA.

      Detect ProtocolSelect the detection method for the profile check:
      • Ping
      • TCP ECHO
      • UDP ECHO
      • HTTP
      • TWAMP
      Detect ServerEnter the IP address of the WAN interface that you want to monitor.
      MemberSelect available interface members. The interfaces must already be added to the template.
      SLA

      Click Create New to create a new SLA. Enable and enter the Jitter Threshold (in milliseconds), Latency Threshold (in milliseconds), and Packet Loss Threshold (in percent), then click OK to create the SLA.

      SLAs can also be edited and deleted as required.

      Link Status

      Interval

      Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 1).

      Failure Before Inactive

      Specify the number of failures before the link becomes inactive (1 - 10, default = 5).

      Restore Link After

      Specify the number of successful responses received before server is considered recovered (1 - 10, default = 5).

      Action When Inactive

      		Specify what happens with the WAN link becomes inactive.

      Update Static Route

      		Select to update the static route when the WAN link becomes inactive.

      Cascade Interfaces

      		Select to cascade interfaces when the WAN link becomes inactive.

      Advanced Options

      addr-mode

      Address mode (IPv4 or IPv6).

      http-get

      URL used to communicate with the server if the protocol if the protocol is HTTP.

      http-match

      Response string expected from the server if the protocol is HTTP.

      interval

      Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 5).

      packet-size

      Packet size of a TWAMP test session (64 - 1024).

      threshold-alert-jitter

      Alert threshold for jitter (ms, default = 0), range [0-4294967295].

      threshold-alert-latency

      Alert threshold for latency, in milliseconds (0 - 4294967295, default = 0).

      threshold-alert-packetloss

      Alert threshold for packet loss, in percent (0 - 100, default = 0).

      threshold-warning-jitter

      Warning threshold for jitter, in milliseconds (0 - 4294967295, default = 0).

      threshold-warning-latency

      Warning threshold for latency, in milliseconds (0 - 4294967295, default = 0).

      threshold-warning-packetloss

      Warning threshold for packet loss, in percent (0 - 100, default = 0).

    Previous
    Next