Technical Tip: SD-WAN Rules in SD-WAN Monitor only shows Interface Preference members

Description

This article describes why in SD-WAN Rules in SD-WAN Monitor only shows Interface Preference members instead of Zone Preference.

Scope

FortiManager v7.2.9 and below, v7.4.5 and below, v7.6.2 and below, FortiGate.

Solution

SD-WAN Rules in SD-WAN Monitor: Go to Device Manager -> Device & Groups -> Monitors -> SD-WAN Monitor -> Table View ->  Select Device -> SD-WAN Rules.  Both SD-WAN Rules, test1 and test2 will only show Internet Preference members.

SD-WAN Rules in Device Manager (Config Page): Go to Device Manager -> Device & Groups -> Managed FortiGate -> Select Device -> Network ->  SD-WAN -> SD-WAN Rules.

In configuration, it will show all members, either Zone Preference or Interface Preference.

For example, test1 SD-WAN Rules configuration set Interface Preference, HUB2-VPN2 and HUB2-VPN1, and Zone Preference, WAN2 as members.

WAN2 SD-WAN Zones have port3 as members and that is why it shows port3 in SD-WAN Rules test1 members.

For test2 example, no Interface Preference members but only Zone Preference, HUB1. Where HUB1 SD-WAN Zones, HUB1-VPN1 and HUB1-VPN2 as members.

As per the current design, FortiManager for SD-Monitor will choose Interface Preference to display priority-members attribute instead of priority-zone attributes since it has lower priority. The logic are followed from the FortiGate where the priority-zone attributes does not display in the SD-WAN Monitor.

Related article:
Fields for configuring WAN intelligence