Fortinet black logo

Handbook

Overview

6.0.0
Copy Link
Copy Doc ID 4afb0436-a998-11e9-81a4-00505692583a:549548
Download PDF

Overview

When you configure routing in transparent mode on a FortiGate, all interfaces must be connected to the same subnet. This means all traffic comes from and leaves on the same subnet. This is important because it limits the static routing options to only gateways that are attached to this subnet. For example, if you have only one router that connects your network to the Internet, all static routing on the FortiGate uses this gateway. For this reason, static routing on a FortiGate in transparent mode may be a bit different, but it’s not as complex as routing in NAT mode.

To view the routing table in transparent mode, go to Network > Static Routes. When you view entries for static routes in transparent mode, you’ll see the following settings:

Field

Description

Destination

When Subnet is selected, shows the IP address and netmask of the destination of the traffic being routed. 0.0.0.0 is the default route and matches all traffic destinations.

Gateway

Specifies the IP address of the next hop for traffic. This is usually the IP address of a router on the edge of your network.

Priority

The FortiGate uses the priority if there’s more than one match for a route. This allows you to use multiple routes, but configure preferred routes.

Routes with a larger value have a lower priority. If the preferred route isn’t available, another route is used instead. If there is more than one match for a route, and the routes have the same priority, the FortiGate uses Equal Cost Multiple Path (ECMP) to share traffic between the routes.

The possible values are 0 to 4294967295. This setting only applies to static routes. The priority for routes that are dynamically learned from routing protocols is 0.

Overview

When you configure routing in transparent mode on a FortiGate, all interfaces must be connected to the same subnet. This means all traffic comes from and leaves on the same subnet. This is important because it limits the static routing options to only gateways that are attached to this subnet. For example, if you have only one router that connects your network to the Internet, all static routing on the FortiGate uses this gateway. For this reason, static routing on a FortiGate in transparent mode may be a bit different, but it’s not as complex as routing in NAT mode.

To view the routing table in transparent mode, go to Network > Static Routes. When you view entries for static routes in transparent mode, you’ll see the following settings:

Field

Description

Destination

When Subnet is selected, shows the IP address and netmask of the destination of the traffic being routed. 0.0.0.0 is the default route and matches all traffic destinations.

Gateway

Specifies the IP address of the next hop for traffic. This is usually the IP address of a router on the edge of your network.

Priority

The FortiGate uses the priority if there’s more than one match for a route. This allows you to use multiple routes, but configure preferred routes.

Routes with a larger value have a lower priority. If the preferred route isn’t available, another route is used instead. If there is more than one match for a route, and the routes have the same priority, the FortiGate uses Equal Cost Multiple Path (ECMP) to share traffic between the routes.

The possible values are 0 to 4294967295. This setting only applies to static routes. The priority for routes that are dynamically learned from routing protocols is 0.