Technical Tip: Additional configuration when the route check in SD-WAN rules are disabled

By default, each SD-WAN rule is expected to have a matching route in the routing table, as the SD-WAN rules operate like Policy Routes.

This behavior can be changed by enabling the default and the gateway, which will disable the route check, as per the following documentation:

https://docs.fortinet.com/document/fortigate/6.4.0/sd-wan-deployment-for-mssps/629239/disabling-route-check-in-sd-wan-rules

As FortiGate does not know where to forward the packets after disabling the route check, it is also needed to configure the gateway (next-hop) under the SD-WAN member, as per the following:

# config sys sdwan
# config members
    edit X
        set gateway x.x.x.x  <---- Where the packet should be forwarded.

    end
end