I do it here by creating two tunnels to each FortiGate (since each hve at least two wan) conmnect to different wans.
I then on both sides create the required policies.
I then create two static routes with same distance and different priority to the remote subnets I want to access over the tunnels.
That will do prio based routing. It will primaryly use the route with the lowest prio and if that is not available will use the routing with next higher prio.
Works fine here.
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2677 | |
| 1412 | |
| 810 | |
| 703 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.