we have implemented a Hub and Spoke architecture via FortiManager, using a "Star" community, and a single SD WAN interface which contains all the tunnels, but we have a routing problem.
According to Fortinet, the SD WAN Rule, is matched after the policy route (if not found), so we created an SD WAN Zone with all members, and to route correctly, we created an SD WAN Rule to match the traffic exact, with the use of a Performance SLA, but the communication between the Hub and the spokes does not work.
thank you for your support.
so, to test, we created a sperated SD WAN zone, and that contains just the tunnel of a single site, and the routing also with a static route, and it works. but we cannot create at each site a SD WAN spéré with a separate routing, knowing that we have many spokes.
what is the solution to this problem, and is the fact of configuring the SD WAN Rules without any static route is the right solution.