FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
ekrishnan
Staff
Staff
Article Id 341163
Description This article describes that the SD-WAN static route is removed when downgrading from the v7.4, v7.2 or v7.0 stream to the v6.4 stream.
Scope FortiGate.
Solution

It is strictly recommended to upgrade the FortiGate using the Upgrade Path, but there are any unseen circumstances where the FortiGate needs to be downgraded to the previous version which is v6.4.x from v7.0 , v7.2 or 7.4. If the default route is using the SD-WAN interface, it will be removed due to the naming convention and this is expected.

 

Below is an example in each version:

 

v6.4.13:

 

config router static
    edit 1
        set distance 1
        set sdwan enable <----- This is the sdwan naming reference in the 6.4 versions.
    next
end

 

V7.0.14: 

 

config router static
    edit 1
        set distance 1
        set sdwan-zone "virtual-wan-link"
    next
end
 

V7.2.8:


config router static
    edit 1
        set distance 1
        set sdwan-zone "virtual-wan-link"
    next
end

 

V7.4.4:


config router static
    edit 1
        set distance 1
        set sdwan-zone "virtual-wan-link"
    next
end

 

Solution

In this situation have the console cable ready to access the device and add the static route back.

Contributors