Pointing to branch offices with black hole routes
It is a best practice to create black hole routes with destinations set to each branch network. If the FortiGate temporarily loses connectivity with a branch network, traffic destined to that network is sent to the black hole until connectivity has been restored.
Each Black hole route includes:
- Setting
dst
to the branch network IP address - Setting the
distance
to 254
config router static
edit 1
set dst 10.0.0.0/14
set distance 254
set blackhole enable
next
end