Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
jwegner
New Contributor

SD-WAN and Zscaler Internet Access (ZIA)

Does anyone know if the Maximize Bandwidth SLA option is supported in the SD-WAN rules when connecting across tunnels to Zscaler Internet Access (ZIA) Cloud on-ramp? The documentation I've found recommends using Link-Cost for failover between a primary vpn tunnel across ISP1 and a secondary vpn across ISP2. Each to a separate Zscaler Public Edge. I'm trying to build 4 tunnels, 2 from each ISP to each Public Edge, and load balance across all 4. Has anyone attempted this? 

3 REPLIES 3
amrit
Staff
Staff

The maximum bandwidth option in sdwan load balances the traffic among all the interfaces that satisfy SLAs. This can also be configured without SLA. So basically traffic will be sent out in round-robin manner on all the

participating interfaces. So if this supported by Z-scaler you can configure this on fortigate without any problem.

For further clarification you can read this document : https://docs.fortinet.com/document/fortigate/7.4.4/administration-guide/708464

Amritpal Singh
jwegner
New Contributor

I can't think of any reason why it wouldn't work. But I'm unable to find documentation specific to load balancing to Zscaler Public Service Edge. I would think that each Public Service Edge needs to operate independently from every other Public Service Edge in order to keep traffic separated.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors