Description | This article describes the behavior of the SD-WAN rules configured in manual mode while the performance SLA failure affect the rule. |
Scope | FortiGate. |
Solution |
In manual mode, no health checks are used. As a result, decision-making closer resembles logic more than intelligence.
But If all health-check is indicating that an interface is dead, even if it is used in manual mode, this SD-WAN rule will be void.
147 # diagnose sys sdwan health-check
It would be confusing while enforce such interfaces in the SD-WAN rule, the SLA still affects the route.
A possible solution is to delete all SLAs regarding that interface so that the port would be invisible from '# diagnose sys sdwan health-check'.
The interface in manual SD-WAN rules would be selected as active and the rule would be working without effect by SLA anymore.
Note, the SLA cannot be deleted if it has been applied to some rules.
Related documents: https://docs.fortinet.com/document/fortigate/7.2.3/administration-guide/723448/manual-strategy |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.