Skip to main content
jpapic
jpapic
Explorer
February 23, 2026
Question

Best Practices - Overlay Orch.

  • February 23, 2026
  • 3 replies
  • 196 views

 

Hi all,

I’m looking for best practice advice.

Topology:

  • 20 hubs

  • 2 branches

  • Each hub has:

    • 2x MPLS links (already in SD-WAN)

    • 1x FortiExtender (Internet link)

My idea is to use Overlay Orchestration only over the Internet (FEX) link, since it will be used for Internet access and backup.

Would it be better to:

  • Use Overlay only on the Internet link and keep MPLS as regular SD-WAN transport
    or

  • Include MPLS + Internet in the Overlay?

What would be the recommended design at this scale?

Thanks.

3 replies

Stephen_G
Moderator
Stephen_G
Moderator
February 27, 2026

Hello jpapic,

 

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible. 

 

If anybody else has any info or advice, please feel free to contribute!

Regards,
Stephen_G - Fortinet Community Team
farhanahmed
Staff
farhanahmed
Staff
February 28, 2026

@jpapic  I assume you mean 2 hubs and 20 branches NOT 20 hubs and 2 branches :)

You can use both internet and MPLS as underlays and then use SDWAN rules to steer specific traffic to MPLS and internet for everything else.

https://docs.fortinet.com/document/fortimanager/7.6.6/administration-guide/194372/sd-wan-overlay-template-ip-network-design 

jpapic
jpapicAuthor
Explorer
March 2, 2026

Hello Farhanahmed,
You are right it was my bad 2 hubs and 20 branches, and thanks for the link I will check it.

Terms & ConditionsAccessibility statement