Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
migell
New Contributor

Created on ‎01-03-2025 02:50 AM Edited on ‎01-07-2025 01:10 AM

SDWAN SLA Limitations

With a limit of 10 SLAs per zone I'm a bit stumped.

I have roughly 80 remote sites all connectong to the same hub, with 2x dialup tunnels per site. So 160 IPSec tunnels in the overlay.

While each remote site can have its own SLA up to the Hub I can only configure 10 SLAs from the Hub to remote sites https://19216801.onl/ .

This causes some performance issues for traffic sourcing from the Hub as it's path selection isn't checking the quality of the tunnels for all the remote sites.

So what now?

Labels:
321
0 Kudos
2 REPLIES 2
funkylicious
SuperUser
SuperUser

Created on ‎01-03-2025 05:01 AM Edited on ‎01-03-2025 05:02 AM

Can you share where you found this limitation?

If I visit the link, https://docs.fortinet.com/max-value-table , I find for 60F/200F/600F for system.sdwan:health-check values of 4000.

"jack of all trades, master of none"
"jack of all trades, master of none"
290
0 Kudos
Jeremy5385
New Contributor II

Created on ‎01-03-2025 07:58 AM

I would open a support ticket on this one.  I have a hub with 20 spokes, roughly 80 tunnels (2x2).  The hub has a SLA for each site with the four tunnels to the site.  I then have a SDWAN rule per site with the destination IP range and the four tunnels.  I have had no issue with going past 10.  FGT 7.4.4. 

263
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.