Hot!SDWAN interface at HQ vs Branches

New Member
  • Total Posts : 9
  • Scores: 0
  • Reward points: 0
  • Joined: 2020/04/03 11:09:12
  • Status: offline
2021/06/08 07:53:09 (permalink)

SDWAN interface at HQ vs Branches

In planning stages:SDWAN implementation.  
HQ: (2) Fortigates in HA  (1) MPLS interface and (1) ISP/wan1 interface
Branches: (6) Fortigates, (1) MPLS interface and (1) ISP/wan1 interface
I understand I need to create SDWAN enabled interfaces/members, default routes, etc on branch Fortigates... 
Do I need to also create SDWAN interfaces/default routes etc on the HQ Fortigates?

1 Reply Related Threads

    Expert Member
    • Total Posts : 987
    • Scores: 82
    • Reward points: 0
    • Joined: 2017/06/14 01:27:25
    • Location: Regensburg
    • Status: offline
    Re: SDWAN interface at HQ vs Branches 2021/06/14 06:14:35 (permalink)
    You will always need to have at least one default route at least on the FGT. This is needed for internet access and to enable the FGT to reach the Fortinet Servers to get license statuses and virus definitions etc.
    sd-wan is bascially only needed if there is more than one internet line connected to the FGT and you want it to do load balancing with them.

    "It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
    Jump to:
    © 2021 APG vNext Commercial Version 5.5