Fortinet black logo

Cookbook

Home FortiGate / FortiOS 5.6.0 Cookbook

Modifying existing policies

5.6.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.0
6.0.0
5.6.0
5.4.0
Copy Link
Copy Doc ID 4d801240-7ccc-11e9-81a4-00505692583a:916212
Download PDF

Modifying existing policies

If any interface is already used in the FortiGate configuration, you cannot add it to the SD-WAN interface. In this case, you must delete any security policies that use either WAN1 or WAN2, such as the default Internet access policy. Traffic cannot reach WAN1 or WAN2 through the FortiGate after you delete the existing policies.

Also check for any other references to WAN1 or WAN2 and make the necessary modifications.

If you have many policies that reference WAN1 or WAN2, you can redirect those policies to unused ports rather than delete them, so that you don't have to recreate those policies again. You can redirect those policies back to the SD-WAN interface when it is created.

  1. Go to Policy & Objects > IPv4 Policy and delete any policies that use WAN1 or WAN2.

Previous
Next

Modifying existing policies

If any interface is already used in the FortiGate configuration, you cannot add it to the SD-WAN interface. In this case, you must delete any security policies that use either WAN1 or WAN2, such as the default Internet access policy. Traffic cannot reach WAN1 or WAN2 through the FortiGate after you delete the existing policies.

Also check for any other references to WAN1 or WAN2 and make the necessary modifications.

If you have many policies that reference WAN1 or WAN2, you can redirect those policies to unused ports rather than delete them, so that you don't have to recreate those policies again. You can redirect those policies back to the SD-WAN interface when it is created.

  1. Go to Policy & Objects > IPv4 Policy and delete any policies that use WAN1 or WAN2.

Previous
Next