I added policy routing to FortiGate, but it couldn't enable sla. FortiGate couldn't sense when the network of the next hop changed
POP1 # config router policy
POP1 (policy) # edit 1
POP1 (1) # set
input-device Incoming interface name.
input-device-negate Enable/disable negation of input device match.
src Source IP and mask (x.x.x.x/x).
srcaddr Source address name.
src-negate Enable/disable negating source address match.
dst Destination IP and mask (x.x.x.x/x).
dstaddr Destination address name.
dst-negate Enable/disable negating destination address match.
action Action of the policy route.
protocol Protocol number (0 - 255).
gateway IP address of the gateway.
output-device Outgoing interface name.
tos Type of service bit pattern.
tos-mask Type of service evaluated bits.
status Enable/disable this policy route.
comments Optional comments.
internet-service-id Destination Internet Service ID.
internet-service-custom Custom Destination Internet Service name.
POP1 (1) # end
POP1 # get system status
Version: FortiGate-VM64 v7.2.3,build1262,221109 (GA.F)
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello Peter,
You may consider to use SD-WAN in order to achieve your goal.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.