Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
_mribwan
Staff
Staff

Created on ‎10-04-2024 01:26 AM

Article Id 347079

Technical Tip : Using SD-WAN interface (virtual wan link) as source interface for ZTNA Authentication Rule

Description This article describes the feature of being able to use the SD-WAN interface (virtual wan link) as the source interface for the ZTNA Authentication Rule.
Scope FortiOS 7.4.1+, 7.6.0+
Solution

Authentication Rule is required in the configuration of ZTNA. It defines the proxy sources and destinations that require authentication, and which authentication scheme to apply

 

Selection of the SD-WAN interface (virtual-wan-link) is only available on v7.4.1+, v7.6.0+, and above only, as it is considered a new feature :

 

sdwan interface available to be used as source interface for Authentication Rule srcintfsdwan interface available to be used as source interface for Authentication Rule srcintf

 

GUIGUI

 

Another unsupported version will encounter the error 'Entry not found in datasource' when selecting it. The SD-WAN interface will also be unavailable via CLI:

 

GUI error upon selecting SDWAN interfaceGUI error upon selecting SDWAN interface

 

No SDWAN interface on CLINo SDWAN interface on CLI

 

Labels:
810
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.