Hello
I have fortigate VM with 6.2.5 firmware and i upgrade it to 6.4.8 with all intermediate updates.
Before the update, the SD-WAN was set up. After the upgrade, all WAN interfaces became members of their security zones interfaces, but not member of the SD-WAN.
How to return WAN interfaces to SD-WAN?
Remove them from the firewall policy, add them to the SD-WAN and then return them to the firewall policy?
Or is there another way?
Hello,
Thank you for your question.
You should be able to move interface from one zone to another without any change. So if you want to move it from wan1-zone to SDWAN-zone, you can. But you will need to adjust firewall policies afterwards. So if you have any firewall policies that are allowing traffic via wan1-zone and you will move interface to SDWAN-zone, you will need to change destination interface to SDWAN-zone in firewall policy.
Hello, thank you
I understand, but when i try to move the interface from wan1-zone to sd-wan nothing happens
Hi,
What do you mean that nothing happens? interface will still be under wan1-zone?
yes
Hi,
In that case, try to do it via cli. If there will be any problem/error, you should see it via cli.
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2677 | |
| 1412 | |
| 810 | |
| 703 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.