Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
qyah
Staff
Staff

Created on ‎09-23-2024 12:22 AM

Article Id 343079

Troubleshooting Tip: Route shows inactive when SD-WAN Performance SLA Configured

Description This article describes that route shows inactive when SD-WAN Performance SLA Configured.
Scope FortiGate, FortiOS v7.4.X.
Solution
  1. From the output of the command, 'get router info routing-table details 0.0.0.0' the static route has been configured and is showing inactive at port2:

 

Screenshot 2024-09-22 160931.png

  1. Navigate to the SD-WAN rule and observe that the interface selection method is manual:

 

Screenshot 2024-09-22 161050.png

  1. Select the SD-WAN Performance SLA. The port2 SLA status is down and the 'update static route' is being enabled. The 'update static route' is enabled by default. The issue can be resolved either by disabling the update static route or removing the performance SLA which is not being used:

 

Screenshot 2024-09-22 161222.png

 

  1. The same troubleshooting method can be done on the IPSEC-VPN with SD-WAN setup.
293
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.