FCNSP/WCSP
So even though I need to select the " outgoing interface" while creating the policy route I would not populate the " gateway" field?yes referring to the Advanced Routing Guide:
Most policy settings are optional, so a matching policy alone might not provide enough information for forwarding the packet. The FortiGate unit may refer to the routing table in an attempt to match the information in the packet header with a route in the routing table. For example, if the outgoing interface is the only item in the policy, the FortiGate unit looks up the IP address of the next-hop router in the routing table. This situation could happen when the interfaces are dynamic (such as DHCP or PPPoE) and you do not want or are unable to specify the IP address of the next-hop router.
FCNSP/WCSP
Hi one hint....! Because of your problem I would never implement this what you implmeneted. To think about look in following forum message: https://forum.fortinet.com/FindPost/107241 I would never recommend to go as mentioned in the Advanced Routing Guide for Load Balancing, Spillover etc. Keep control of you traffic to 100% and this what is mentioned in the link above gives you the possibility to do so. only a hint have fun Andrea
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.