Fortinet Community

Unlock Exclusive Benefits

Join Our Community Today!

Join our community and post in the forum to earn your exclusive Spring Badge! Become a member today!

Support Forum
Knowledge Base
Community Groups
Blogs

Support Forum

The Forums are a place to find answers on a range of Fortinet products from peers and product experts.

Fortinet Community
Support Forum
Re: Why firewall rules can only put sd wan zones b...

Options

Subscribe to RSS Feed
Mark Topic as New
Mark Topic as Read
Float this Topic for Current User
Bookmark
Subscribe
Mute
Printer Friendly Page

BusinessUser

Contributor

Created on ‎05-26-2023 08:43 PM

Options

Mark as New
Bookmark
Subscribe
Mute
Subscribe to RSS Feed
Permalink
Print
Report Inappropriate Content

Why firewall rules can only put sd wan zones but not sd wan interfaces?

the concept of sd wan is new to me.

So why cant we put physical interfaces?

Labels:

Labels:
FortiGate

718

0 Kudos

Nominate to Knowledge Base

Nominate a Forum Post for Knowledge Article Creation

Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.

SUBMIT CANCEL

All forum topics
Previous Topic
Next Topic

2 REPLIES 2

funkylicious

SuperUser

Created on ‎05-27-2023 05:55 AM

Options

Mark as New
Bookmark
Subscribe
Mute
Subscribe to RSS Feed
Permalink
Print
Report Inappropriate Content

Because, sdwan rules work with the zone you defined, and added the interfaces in question.

https://docs.fortinet.com/document/fortigate/6.4.2/administration-guide/942095/sd-wan-zones

"jack of all trades, master of none"

696

0 Kudos

BusinessUser

Contributor

In response to funkylicious

Created on ‎05-27-2023 06:27 AM Edited on ‎05-28-2023 03:22 AM

Options

Mark as New
Bookmark
Subscribe
Mute
Subscribe to RSS Feed
Permalink
Print
Report Inappropriate Content

Yes. I read the article. I dont understand WHY sdwan members cannot be added into FW policy though. Why do we need to use zone?

It isnt the case for traditional firewall policies.

691

0 Kudos

Announcements

Check out our Community Chatter Blog! Click here to get involved

Labels

Top Labels

Alphabetical

FortiGate 9,621
FortiClient 1,962
FortiManager 819
5.2 801
5.4 639
FortiAnalyzer 629
FortiSwitch 532
FortiAP 519
FortiClient EMS 489
6.0 416
5.6 362
FortiMail 348
SSL-VPN 315
IPsec 296
6.2 251
FortiNAC 235
FortiAuthenticator v5.5 234
FortiWeb 230
5.0 196
FortiGuard 152
SD-WAN 151
FortiAuthenticator 140
6.4 128
Firewall policy 115
FortiGateCloud 108
FortiSIEM 105
FortiCloud Products 105
FortiToken 97
Wireless Controller 90
Customer Service 83
FortiProxy 72
High Availability 71
4.0MR3 64
FortiGate-VM 64
FortiEDR 64
ZTNA 64
Fortivoice 63
Routing 61
VLAN 60
FortiADC 59
DNS 58
SAML 55
Authentication 54
BGP 54
RADIUS 51
LDAP 50
FortiSandbox 49
NAT 48
FortiExtender 46
Certificate 46
SSO 45
FortiDNS 43
FortiLink 40
FortiGate v5.4 37
Application control 37
VDOM 35
Logging 35
FortiSwitch v6.4 34
Interface 34
FortiConnect 32
FortiWAN 31
Web profile 30
FortiPAM 29
Virtual IP 29
FortiGate v5.2 26
FortiConverter 26
SSL SSH inspection 25
FortiPortal 23
Traffic shaping 23
FortiGate Cloud 22
Automation 22
Static route 22
FortiSwitch v6.2 20
SNMP 20
SSID 20
FortiMonitor 18
WAN optimization 18
System settings 17
OSPF 16
FortiDDoS 15
API 15
Admin 15
Security profile 15
Web application firewall profile 15
IP address management - IPAM 15
FortiGate v5.0 14
FortiSOAR 14
FortiCASB 14
IPS signature 14
FortiAP profile 14
Proxy policy 13
Intrusion prevention 13
Traffic shaping policy 12
Web rating 12
FortiManager v5.0 11
FortiManager v4.0 11
FortiBridge 11
FortiRecorder 11
Explicit proxy 11
FortiWeb v5.0 10
Traffic shaping profile 10
Fabric connector 10
Port policy 10
4.0MR2 9
FortiGate v4.0 MR3 9
FortiAnalyzer v5.0 9
DNS filter 9
Users 9
FortiDeceptor 8
FortiCache 8
RMA Information and Announcements 8
trunk 8
Antivirus profile 8
Fortinet Engage Partner Program 8
4.0 7
Authentication rule and scheme 7
FortiCarrier 6
FortiToken Cloud 6
Packet capture 6
NAC policy 6
Application signature 6
FortiScan 5
FortiTester 5
DLP profile 5
DoS policy 5
Email filter profile 5
VoIP profile 5
Cloud Management Security 5
3.6 4
FortiDirector 4
Internet service database 4
DLP sensor 4
Netflow 4
Protocol option 4
TACACS 4
Replacement messages 4
SDN connector 4
Service 4
Multicast routing 4
FortiDB 3
FortiHypervisor 3
FortiNDR 3
DLP Dictionary 3
Multicast policy 3
Vulnerability Management 3
FortiInsight 2
FortiAI 2
Kerberos 2
Video Filter 2
File filter 2
Schedule 2
Zone 2
FortiEdge Cloud 2
FortiGuest 2
4.0MR1 1
FortiManager-VM 1
FortiCWP 1
Subscription Renewal Policy 1
ICAP profile 1
Virtual wire pair 1
FortiEdge 1

Previous
1 of 17
Next

Top Kudoed Authors

User

Count

2236

1216

770

451

364

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media

Security Research

Threat Research
FortiGuard Labs
Threat Map
Threat Briefs
Ransomware
Getting Started Resources

Company

About Us
Security Fabric
Exec. Mgmt
Careers
Certifications
Events
Industry Awards
Social Responsibility

News & Articles

News Releases
News Articles
Trademarks

Corporate
Community

Terms of Service
Privacy Policy
GDPR
Cookie Settings

You are leaving our website

You are leaving our site and we cannot be held responsible for the content of external websites

Stay Here Continue