Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hpenmetsa
Staff
Staff

Created on ‎08-11-2024 10:22 PM Edited on ‎08-20-2024 06:50 AM

Article Id 332144

Technical Tip: SD-WAN routes cannot be set as distance value of 10

Description This article describes why a static route or default route outgoing with SD-WAN Zone cannot be assigned an administrative distance of 10 on a FortiGate.
Scope FortiGate.
Solution

The following example explains that a static route or default route pointing to an SD-WAN zone cannot set a distance of 10.

 

By default, the SD-WAN routes distance value is set to '1'.

 

static-route.png

 


When trying to change the SD-WAN route distance value to 10, the change will not take effect, and the value will revert back to 1.

 

distance-change.png

 


SD-WAN route can be assigned any administrative distance value between 1 and 255, except AD value 10. Because distance 10 is the default value for static routes, it cannot be assigned to SD-WAN routes.

 

 

default distance.png

 

 

It is the default behavior on FortiGate that it is impossible to assign a distance value of 10 to an SD-WAN route.
277
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.