Dear Team,
I have gone though Fortigate document but couldn't understand why we use Virtual Wire Pair and In which cases Virtual Wire Pair will be used.
Let me explain What I have understood from the documents-
Minimum to interfaces are required.
There is no IP address needs to be configured.
Traffic from other interfaces cannot be routed to the interfaces in a virtual wire pair.
Behave like bridge and control traffic easily
Can any one explain it easy to understand.
Thank you.
Umesh P
The idea of virtual wire pair is to introduce firewalling/inspection to the existing setup/traffic without any changes to the IP address/Routes .
For example, lets say you have an existing server which is active, and currently getting a lot of attacks/malicious traffic. The existing setup is not able to block these and you would like to introduce an additional firewall, but you don't want to change the IP addressing . You can introduce virtual wire pair and corresponding policies/inspections.
Hi Suraj,
As per my understanding lets support we had small network in our organization I made a topology like below
Virtual Pair allows you to use UTMs (Security Policies) which can perform along with deep inspections (Layer 7) packets as you can see in the below link:
Creating a virtual wire pair
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Creating-a-virtual-wire-pair/ta-p/190248
Can you share some more details on your question?
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2679 | |
| 1412 | |
| 810 | |
| 704 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.