Ip-pools and routing tables

Forum|Forum|5 years ago
April 8, 2021
1 reply
2016 views

Hi! I'm asking about how does fortigate decide wich pool to use when the rule is built on a zone (two wans) and it is configured to use two pools, one of each net.

lobstercreed

New Member

Hey Francisco,

Great question that I ran into months ago when doing a particular SD-WAN design. There are two solutions as I understand it. #2 is what I am moving to shortly (I think it makes more sense to folks with experience on other vendors, especially Cisco), but I used #1 for my PoC.

[ol]

From CLI, set associated-interface for the IP pool. Select both IP pools on the rule and the right one will get chosen based on the egress interface.

If your "zone" is an SD-WAN zone (6.4 code), you can use Central NAT and the SNAT policy table to specify which IP pool is used when egressing a particular interface.[/ol]

Hope that helps you! - Daniel

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded