Hi bro,

I followed the method you're mentioned in the above link, but I did not find in the method mentioned the way to add the sites that I wanted to open on port no# 4.

Hi Atoon

You specify the FQDN (site1.com, site2.com) in the Destination > Address field, and in the Interface Preference field you select port4.

Used this method with static route without success.

There is only one static route for SD-WAN interface, its default route uses SD-WAN interface.

In SD-WAN the routes are SD-WAN rules (as described in my above post) which are policy routes, so you don't need to add an extra static route towards site1.com and site2.com.

Regarding a method you've mentioned for accessing specific websites. I've implemented the approach, but unfortunately, I'm have an issue.
While the specific site is accessible and functioning as expected, I am unable to open other sites, such as Google or any sites.

1- Create a new address and add address needed.

2- Create SD-WAN ---> add WAN port and Port no# 4 as Interface Members

3- Create Static route as the below

4- Create Policy ---> Incoming Interface (Internal), Outgoing Interface (SD-WAN), Source Address (All), Destination (Address added in step 1) and enabled NAT

Yes, it's worked now.

Another issue when adding the address site1.com it's worked, but when added as wildcard *.site1.com not work

There are some conditions for wildcard FQDN to work properly.

• You have to use non encrypted DNS like DNS over TLS or DNS over HTTPS. So your clients have to use classic DNS
• The DNS query and DNS response must transit through FGT, it means client and DNS server must be on different segments and separated by FGT

If those conditions are not met then wildcard FQDN will not work properly, and you will need to enter in FGT each of the subdomains, like sub1.site1.com, sub2.site1.com, and so ...