Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ftristao
New Contributor

Created on ‎04-08-2021 07:25 AM

Ip-pools and routing tables

Hi! I'm asking about how does fortigate decide wich pool to use when the rule is built on a zone (two wans) and it is configured to use two pools, one of each net.

1645
0 Kudos
1 REPLY 1
lobstercreed
Valued Contributor

Created on ‎04-12-2021 07:20 AM

Hey Francisco,

 

Great question that I ran into months ago when doing a particular SD-WAN design.  There are two solutions as I understand it.  #2 is what I am moving to shortly (I think it makes more sense to folks with experience on other vendors, especially Cisco), but I used #1 for my PoC.

 

[ol]
  • From CLI, set associated-interface for the IP pool.  Select both IP pools on the rule and the right one will get chosen based on the egress interface.
  • If your "zone" is an SD-WAN zone (6.4 code), you can use Central NAT and the SNAT policy table to specify which IP pool is used when egressing a particular interface.[/ol]

    Hope that helps you!  - Daniel

    • 1107
    0 Kudos
    Announcements
    Check out our Community Chatter Blog! Click here to get involved
    Labels
    Top Kudoed Authors
    View all
    Broad. Integrated. Automated.

    The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

    Social Media
    Security Research
    Company
    News & Articles
    Contact Us

    Copyright 2025 Fortinet, Inc. All Rights Reserved.