The following snippet summarizes the SD-WAN architecture using the Fabric Overlay Orchestrator deployment method. To view the complete guide, go to SD-WAN Deployment with Fabric Overlay Orchestrator.
SD-WAN Deployment with Fabric Overlay Orchestrator
FortiOS 7.2.4 and later includes a Fabric Overlay Orchestrator feature, which is an easy-to-use GUI wizard that simplifies the process of configuring a self-orchestrated SD-WAN overlay within a single Security Fabric. This feature is self-orchestrated since no additional tool or device, aside from the FortiGates themselves, is required to orchestrate this configuration.
Currently, the Fabric Overlay Orchestrator supports a single hub architecture and builds upon an existing Security Fabric configuration. This feature configures the root FortiGate as the SD-WAN overlay hub and the downstream first-level FortiGates as the spokes. After configuring the Fabric overlay, you can complete the SD-WAN deployment by configuring SD-WAN rules.
The Fabric Overlay Orchestrator can configure an overlay for the following example hub-and-spoke topology using ADVPN and a single hub:
Deployment procedures
Following is a summary of the steps required to configure SD-WAN using FortiOS and Fabric Overlay Orchestrator:
- On the root FortiGate, use the Fabric Overlay Orchestrator to configure the overlay for the hub. See Configuring the root FortiGate as the hub.
- On each downstream first-level FortiGate, use the Fabric Overlay Orchestrator to configure the overlay for the spoke. See Configuring a downstream FortiGate as a spoke.
- If applicable, configure an overlay on a spoke for an additional incoming interface on the hub. See Configuring an overlay on the spoke for an additional interface on the hub.
- Verify the configuration for hub and spoke FortiGates. See Verifying the configuration.
- On the hub FortiGate, configure SD-WAN rules to use the performance SLAs generated by the Fabric Overlay Orchestrator. See Configuring SD-WAN rules on the hub FortiGate .
- On the spoke FortiGates, configure SD-WAN rules to use the performance SLAs generated by the Fabric Overlay Orchestrator. See Configuring SD-WAN rules on a spoke FortiGate.
For more information, go to SD-WAN Deployment with Fabric Overlay Orchestrator.
