FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
aionescu
Staff
Staff
Description This article describes how to configure the FortiGate so local-out IKE traffic matches configured Policy Based Routing
Scope FortiGate v 6.4.9, 7.0.2 and 7.2.0.
Solution

There are cases when IKE local-out traffic needs to match a configured Policy Based Routing.

Since FortiOS 6.4.9, 7.0.2 and 7.2.0 a new, per VDOM, option was introduced:

 

# config system setting

set ike-policy-route enable | disable

 

For a PBR match, the firewall must have a valid route to the remote gateway.

 

More information about Policy Based Routing:

https://docs.fortinet.com/document/fortigate/6.0.0/handbook/34912/policy-routing

Contributors