config system sdwan
Configure redundant Internet connections with multiple outbound links and health-check profiles.
config system sdwan Description: Configure redundant Internet connections with multiple outbound links and health-check profiles. set app-perf-log-period {integer} config duplication Description: Create SD-WAN duplication rule. edit <id> set dstaddr <name1>, <name2>, ... set dstaddr6 <name1>, <name2>, ... set dstintf <name1>, <name2>, ... set packet-de-duplication [enable|disable] set packet-duplication [disable|force|...] set service <name1>, <name2>, ... set service-id <id1>, <id2>, ... set sla-match-service [enable|disable] set srcaddr <name1>, <name2>, ... set srcaddr6 <name1>, <name2>, ... set srcintf <name1>, <name2>, ... next end set duplication-max-num {integer} set fail-alert-interfaces <name1>, <name2>, ... set fail-detect [enable|disable] config health-check Description: SD-WAN status checking or health checking. Identify a server on the Internet and determine how SD-WAN verifies that the FortiGate can communicate with it. edit <name> set addr-mode [ipv4|ipv6] set class-id {integer} set detect-mode [active|passive|...] set diffservcode {user} set dns-match-ip {ipv4-address} set dns-request-domain {string} set embed-measured-health [enable|disable] set failtime {integer} set ftp-file {string} set ftp-mode [passive|port] set ha-priority {integer} set http-agent {string} set http-get {string} set http-match {string} set interval {integer} set members <seq-num1>, <seq-num2>, ... set mos-codec [g711|g722|...] set packet-size {integer} set password {password} set port {integer} set probe-count {integer} set probe-packets [disable|enable] set probe-timeout {integer} set protocol [ping|tcp-echo|...] set quality-measured-method [half-open|half-close] set recoverytime {integer} set security-mode [none|authentication] set server {string} config sla Description: Service level agreement (SLA). edit <id> set jitter-threshold {integer} set latency-threshold {integer} set link-cost-factor {option1}, {option2}, ... set mos-threshold {string} set packetloss-threshold {integer} set priority-in-sla {integer} set priority-out-sla {integer} next end set sla-fail-log-period {integer} set sla-id-redistribute {integer} set sla-pass-log-period {integer} set source {ipv4-address} set source6 {ipv6-address} set system-dns [disable|enable] set threshold-alert-jitter {integer} set threshold-alert-latency {integer} set threshold-alert-packetloss {integer} set threshold-warning-jitter {integer} set threshold-warning-latency {integer} set threshold-warning-packetloss {integer} set update-cascade-interface [enable|disable] set update-static-route [enable|disable] set user {string} set vrf {integer} next end set load-balance-mode [source-ip-based|weight-based|...] config members Description: FortiGate interfaces added to the SD-WAN. edit <seq-num> set comment {var-string} set cost {integer} set gateway {ipv4-address} set gateway6 {ipv6-address} set ingress-spillover-threshold {integer} set interface {string} set preferred-source {ipv4-address} set priority {integer} set priority6 {integer} set source {ipv4-address} set source6 {ipv6-address} set spillover-threshold {integer} set status [disable|enable] set transport-group {integer} set volume-ratio {integer} set weight {integer} set zone {string} next end config neighbor Description: Create SD-WAN neighbor from BGP neighbor table to control route advertisements according to SLA status. edit <ip> set health-check {string} set member <seq-num1>, <seq-num2>, ... set minimum-sla-meet-members {integer} set mode [sla|speedtest] set role [standalone|primary|...] set service-id {integer} set sla-id {integer} next end set neighbor-hold-boot-time {integer} set neighbor-hold-down [enable|disable] set neighbor-hold-down-time {integer} config service Description: Create SD-WAN rules (also called services) to control how sessions are distributed to interfaces in the SD-WAN. edit <id> set addr-mode [ipv4|ipv6] set agent-exclusive [enable|disable] set bandwidth-weight {integer} set default [enable|disable] set dscp-forward [enable|disable] set dscp-forward-tag {user} set dscp-reverse [enable|disable] set dscp-reverse-tag {user} set dst <name1>, <name2>, ... set dst-negate [enable|disable] set dst6 <name1>, <name2>, ... set end-port {integer} set end-src-port {integer} set gateway [enable|disable] set groups <name1>, <name2>, ... set hash-mode [round-robin|source-ip-based|...] set health-check <name1>, <name2>, ... set hold-down-time {integer} set input-device <name1>, <name2>, ... set input-device-negate [enable|disable] set input-zone <name1>, <name2>, ... set internet-service [enable|disable] set internet-service-app-ctrl <id1>, <id2>, ... set internet-service-app-ctrl-category <id1>, <id2>, ... set internet-service-app-ctrl-group <name1>, <name2>, ... set internet-service-custom <name1>, <name2>, ... set internet-service-custom-group <name1>, <name2>, ... set internet-service-group <name1>, <name2>, ... set internet-service-name <name1>, <name2>, ... set jitter-weight {integer} set latency-weight {integer} set link-cost-factor [latency|jitter|...] set link-cost-threshold {integer} set load-balance [enable|disable] set minimum-sla-meet-members {integer} set mode [auto|manual|...] set name {string} set packet-loss-weight {integer} set passive-measurement [enable|disable] set priority-members <seq-num1>, <seq-num2>, ... set priority-zone <name1>, <name2>, ... set protocol {integer} set quality-link {integer} set role [standalone|primary|...] set shortcut [enable|disable] set shortcut-priority [enable|disable|...] config sla Description: Service level agreement (SLA). edit <health-check> set id {integer} next end set sla-compare-method [order|number] set sla-stickiness [enable|disable] set src <name1>, <name2>, ... set src-negate [enable|disable] set src6 <name1>, <name2>, ... set standalone-action [enable|disable] set start-port {integer} set start-src-port {integer} set status [enable|disable] set tie-break [zone|cfg-order|...] set tos {user} set tos-mask {user} set use-shortcut-sla [enable|disable] set users <name1>, <name2>, ... set zone-mode [enable|disable] next end set speedtest-bypass-routing [disable|enable] set status [disable|enable] config zone Description: Configure SD-WAN zones. edit <name> set advpn-health-check {string} set advpn-select [enable|disable] set minimum-sla-meet-members {integer} set service-sla-tie-break [cfg-order|fib-best-match|...] next end end
config system sdwan
Parameter |
Description |
Type |
Size |
Default |
||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
app-perf-log-period |
Time interval in seconds that application performance logs are generated. |
integer |
Minimum value: 0 Maximum value: 3600 |
0 |
||||||||||||
duplication-max-num |
Maximum number of interface members a packet is duplicated in the SD-WAN zone. |
integer |
Minimum value: 2 Maximum value: 4 |
2 |
||||||||||||
fail-alert-interfaces |
Physical interfaces that will be alerted. Physical interface name. |
string |
Maximum length: 79 |
|
||||||||||||
fail-detect |
Enable/disable SD-WAN Internet connection status checking (failure detection). |
option |
- |
disable |
||||||||||||
|
|
|||||||||||||||
load-balance-mode |
Algorithm or mode to use for load balancing Internet traffic to SD-WAN members. |
option |
- |
source-ip-based |
||||||||||||
|
|
|||||||||||||||
neighbor-hold-boot-time |
Waiting period in seconds when switching from the primary neighbor to the secondary neighbor from the neighbor start. |
integer |
Minimum value: 0 Maximum value: 10000000 |
0 |
||||||||||||
neighbor-hold-down |
Enable/disable hold switching from the secondary neighbor to the primary neighbor. |
option |
- |
disable |
||||||||||||
|
|
|||||||||||||||
neighbor-hold-down-time |
Waiting period in seconds when switching from the secondary neighbor to the primary neighbor when hold-down is disabled. |
integer |
Minimum value: 0 Maximum value: 10000000 |
0 |
||||||||||||
speedtest-bypass-routing |
Enable/disable bypass routing when speedtest on a SD-WAN member. |
option |
- |
disable |
||||||||||||
|
|
|||||||||||||||
status |
Enable/disable SD-WAN. |
option |
- |
disable |
||||||||||||
|
|
config duplication
Parameter |
Description |
Type |
Size |
Default |
||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
dstaddr |
Destination address or address group names. Address or address group name. |
string |
Maximum length: 79 |
|
||||||||
dstaddr6 |
Destination address6 or address6 group names. Address6 or address6 group name. |
string |
Maximum length: 79 |
|
||||||||
dstintf |
Outgoing (egress) interfaces or zones. Interface, zone or SDWAN zone name. |
string |
Maximum length: 79 |
|
||||||||
id |
Duplication rule ID. |
integer |
Minimum value: 1 Maximum value: 255 |
0 |
||||||||
packet-de-duplication |
Enable/disable discarding of packets that have been duplicated. |
option |
- |
disable |
||||||||
|
|
|||||||||||
packet-duplication |
Configure packet duplication method. |
option |
- |
disable |
||||||||
|
|
|||||||||||
service |
Service and service group name. Service and service group name. |
string |
Maximum length: 79 |
|
||||||||
service-id |
SD-WAN service rule ID list. SD-WAN service rule ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
|
||||||||
sla-match-service |
Enable/disable packet duplication matching health-check SLAs in service rule. |
option |
- |
disable |
||||||||
|
|
|||||||||||
srcaddr |
Source address or address group names. Address or address group name. |
string |
Maximum length: 79 |
|
||||||||
srcaddr6 |
Source address6 or address6 group names. Address6 or address6 group name. |
string |
Maximum length: 79 |
|
||||||||
srcintf |
Incoming (ingress) interfaces or zones. Interface, zone or SDWAN zone name. |
string |
Maximum length: 79 |
|
config health-check
Parameter |
Description |
Type |
Size |
Default |
||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
addr-mode |
Address mode (IPv4 or IPv6). |
option |
- |
ipv4 |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
class-id |
Traffic class ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||||||||||||
detect-mode |
The mode determining how to detect the server. |
option |
- |
active |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
diffservcode |
Differentiated services code point (DSCP) in the IP header of the probe packet. |
user |
Not Specified |
|
||||||||||||||||||||
dns-match-ip |
Response IP expected from DNS server if the protocol is DNS. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||||||||||||||||
dns-request-domain |
Fully qualified domain name to resolve for the DNS probe. |
string |
Maximum length: 255 |
www.example.com |
||||||||||||||||||||
embed-measured-health |
Enable/disable embedding measured health information. |
option |
- |
disable |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
failtime |
Number of failures before server is considered lost. |
integer |
Minimum value: 1 Maximum value: 3600 |
5 |
||||||||||||||||||||
ftp-file |
Full path and file name on the FTP server to download for FTP health-check to probe. |
string |
Maximum length: 254 |
|
||||||||||||||||||||
ftp-mode |
FTP mode. |
option |
- |
passive |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
ha-priority |
HA election priority. |
integer |
Minimum value: 1 Maximum value: 50 |
1 |
||||||||||||||||||||
http-agent |
String in the http-agent field in the HTTP header. |
string |
Maximum length: 1024 |
Chrome/ Safari/ |
||||||||||||||||||||
http-get |
URL used to communicate with the server if the protocol if the protocol is HTTP. |
string |
Maximum length: 1024 |
/ |
||||||||||||||||||||
http-match |
Response string expected from the server if the protocol is HTTP. |
string |
Maximum length: 1024 |
|
||||||||||||||||||||
interval |
Status check interval in milliseconds, or the time between attempting to connect to the server. |
integer |
Minimum value: 20 Maximum value: 3600000 |
500 |
||||||||||||||||||||
members |
Member sequence number list. Member sequence number. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
|
||||||||||||||||||||
mos-codec |
Codec to use for MOS calculation. |
option |
- |
g711 |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
name |
Status check or health check name. |
string |
Maximum length: 35 |
|
||||||||||||||||||||
packet-size |
Packet size of a TWAMP test session. |
integer |
Minimum value: 0 Maximum value: 65535 |
124 |
||||||||||||||||||||
password |
TWAMP controller password in authentication mode. |
password |
Not Specified |
|
||||||||||||||||||||
port |
Port number used to communicate with the server over the selected protocol. |
integer |
Minimum value: 0 Maximum value: 65535 |
0 |
||||||||||||||||||||
probe-count |
Number of most recent probes that should be used to calculate latency and jitter. |
integer |
Minimum value: 5 Maximum value: 30 |
30 |
||||||||||||||||||||
probe-packets |
Enable/disable transmission of probe packets. |
option |
- |
enable |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
probe-timeout |
Time to wait before a probe packet is considered lost. |
integer |
Minimum value: 20 Maximum value: 3600000 |
500 |
||||||||||||||||||||
protocol |
Protocol used to determine if the FortiGate can communicate with the server. |
option |
- |
ping |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
quality-measured-method |
Method to measure the quality of tcp-connect. |
option |
- |
half-open |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
recoverytime |
Number of successful responses received before server is considered recovered. |
integer |
Minimum value: 1 Maximum value: 3600 |
5 |
||||||||||||||||||||
security-mode |
Twamp controller security mode. |
option |
- |
none |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
server |
IP address or FQDN name of the server. |
string |
Maximum length: 79 |
|
||||||||||||||||||||
sla-fail-log-period |
Time interval in seconds that SLA fail log messages will be generated. |
integer |
Minimum value: 0 Maximum value: 3600 |
0 |
||||||||||||||||||||
sla-id-redistribute |
Select the ID from the SLA sub-table. The selected SLA's priority value will be distributed into the routing table. |
integer |
Minimum value: 0 Maximum value: 32 |
0 |
||||||||||||||||||||
sla-pass-log-period |
Time interval in seconds that SLA pass log messages will be generated. |
integer |
Minimum value: 0 Maximum value: 3600 |
0 |
||||||||||||||||||||
source |
Source IP address used in the health-check packet to the server. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||||||||||||||||
source6 |
Source IPv6 address used in the health-check packet to server. |
ipv6-address |
Not Specified |
:: |
||||||||||||||||||||
system-dns |
Enable/disable system DNS as the probe server. |
option |
- |
disable |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
threshold-alert-jitter |
Alert threshold for jitter. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||||||||||||
threshold-alert-latency |
Alert threshold for latency. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||||||||||||
threshold-alert-packetloss |
Alert threshold for packet loss. |
integer |
Minimum value: 0 Maximum value: 100 |
0 |
||||||||||||||||||||
threshold-warning-jitter |
Warning threshold for jitter. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||||||||||||
threshold-warning-latency |
Warning threshold for latency. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||||||||||||
threshold-warning-packetloss |
Warning threshold for packet loss. |
integer |
Minimum value: 0 Maximum value: 100 |
0 |
||||||||||||||||||||
update-cascade-interface |
Enable/disable update cascade interface. |
option |
- |
enable |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
update-static-route |
Enable/disable updating the static route. |
option |
- |
enable |
||||||||||||||||||||
|
|
|||||||||||||||||||||||
user |
The user name to access probe server. |
string |
Maximum length: 64 |
|
||||||||||||||||||||
vrf |
Virtual Routing Forwarding ID. |
integer |
Minimum value: 0 Maximum value: 251 |
0 |
config sla
Parameter |
Description |
Type |
Size |
Default |
---|---|---|---|---|
health-check |
SD-WAN health-check. |
string |
Maximum length: 35 |
|
id |
SLA ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
config members
Parameter |
Description |
Type |
Size |
Default |
||||||
---|---|---|---|---|---|---|---|---|---|---|
comment |
Comments. |
var-string |
Maximum length: 255 |
|
||||||
cost |
Cost of this interface for services in SLA mode. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||
gateway |
The default gateway for this interface. Usually the default gateway of the Internet service provider that this interface is connected to. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||
gateway6 |
IPv6 gateway. |
ipv6-address |
Not Specified |
:: |
||||||
ingress-spillover-threshold |
Ingress spillover threshold for this interface. When this traffic volume threshold is reached, new sessions spill over to other interfaces in the SD-WAN. |
integer |
Minimum value: 0 Maximum value: 16776000 |
0 |
||||||
interface |
Interface name. |
string |
Maximum length: 15 |
|
||||||
preferred-source |
Preferred source of route for this member. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||
priority |
Priority of the interface for IPv4. Used for SD-WAN rules or priority rules. |
integer |
Minimum value: 1 Maximum value: 65535 |
1 |
||||||
priority6 |
Priority of the interface for IPv6. Used for SD-WAN rules or priority rules. |
integer |
Minimum value: 1 Maximum value: 65535 |
1024 |
||||||
seq-num |
Sequence number. |
integer |
Minimum value: 0 Maximum value: 512 |
0 |
||||||
source |
Source IP address used in the health-check packet to the server. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||
source6 |
Source IPv6 address used in the health-check packet to the server. |
ipv6-address |
Not Specified |
:: |
||||||
spillover-threshold |
Egress spillover threshold for this interface. When this traffic volume threshold is reached, new sessions spill over to other interfaces in the SD-WAN. |
integer |
Minimum value: 0 Maximum value: 16776000 |
0 |
||||||
status |
Enable/disable this interface in the SD-WAN. |
option |
- |
enable |
||||||
|
|
|||||||||
transport-group |
Measured transport group. |
integer |
Minimum value: 0 Maximum value: 255 |
0 |
||||||
volume-ratio |
Measured volume ratio. |
integer |
Minimum value: 1 Maximum value: 255 |
1 |
||||||
weight |
Weight of this interface for weighted load balancing. More traffic is directed to interfaces with higher weights. |
integer |
Minimum value: 1 Maximum value: 255 |
1 |
||||||
zone |
Zone name. |
string |
Maximum length: 35 |
virtual-wan-link |
config neighbor
Parameter |
Description |
Type |
Size |
Default |
||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
health-check |
SD-WAN health-check name. |
string |
Maximum length: 35 |
|
||||||||
ip |
IP/IPv6 address of neighbor or neighbor-group name. |
string |
Maximum length: 45 |
|
||||||||
member |
Member sequence number list. Member sequence number. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
|
||||||||
minimum-sla-meet-members |
Minimum number of members which meet SLA when the neighbor is preferred. |
integer |
Minimum value: 1 Maximum value: 255 |
1 |
||||||||
mode |
What metric to select the neighbor. |
option |
- |
sla |
||||||||
|
|
|||||||||||
role |
Role of neighbor. |
option |
- |
standalone |
||||||||
|
|
|||||||||||
service-id |
SD-WAN service ID to work with the neighbor. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||
sla-id |
SLA ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
config service
Parameter |
Description |
Type |
Size |
Default |
||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
addr-mode |
Address mode (IPv4 or IPv6). |
option |
- |
ipv4 |
||||||||||||||||
|
|
|||||||||||||||||||
agent-exclusive |
Set/unset the service as agent use exclusively. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
bandwidth-weight |
Coefficient of reciprocal of available bidirectional bandwidth in the formula of custom-profile-1. |
integer |
Minimum value: 0 Maximum value: 10000000 |
0 |
||||||||||||||||
default |
Enable/disable use of SD-WAN as default service. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
dscp-forward |
Enable/disable forward traffic DSCP tag. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
dscp-forward-tag |
Forward traffic DSCP tag. |
user |
Not Specified |
|
||||||||||||||||
dscp-reverse |
Enable/disable reverse traffic DSCP tag. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
dscp-reverse-tag |
Reverse traffic DSCP tag. |
user |
Not Specified |
|
||||||||||||||||
dst |
Destination address name. Address or address group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
dst-negate |
Enable/disable negation of destination address match. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
dst6 |
Destination address6 name. Address6 or address6 group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
end-port |
End destination port number. |
integer |
Minimum value: 0 Maximum value: 65535 |
65535 |
||||||||||||||||
end-src-port |
End source port number. |
integer |
Minimum value: 0 Maximum value: 65535 |
65535 |
||||||||||||||||
gateway |
Enable/disable SD-WAN service gateway. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
groups |
User groups. Group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
hash-mode |
Hash algorithm for selected priority members for load balance mode. |
option |
- |
round-robin |
||||||||||||||||
|
|
|||||||||||||||||||
health-check |
Health check list. Health check name. |
string |
Maximum length: 79 |
|
||||||||||||||||
hold-down-time |
Waiting period in seconds when switching from the back-up member to the primary member. |
integer |
Minimum value: 0 Maximum value: 10000000 |
0 |
||||||||||||||||
id |
SD-WAN rule ID. |
integer |
Minimum value: 1 Maximum value: 4000 |
0 |
||||||||||||||||
input-device |
Source interface name. Interface name. |
string |
Maximum length: 79 |
|
||||||||||||||||
input-device-negate |
Enable/disable negation of input device match. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
input-zone |
Source input-zone name. Zone. |
string |
Maximum length: 79 |
|
||||||||||||||||
internet-service |
Enable/disable use of Internet service for application-based load balancing. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
internet-service-app-ctrl |
Application control based Internet Service ID list. Application control based Internet Service ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
|
||||||||||||||||
internet-service-app-ctrl-category |
IDs of one or more application control categories. Application control category ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
|
||||||||||||||||
internet-service-app-ctrl-group |
Application control based Internet Service group list. Application control based Internet Service group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
internet-service-custom |
Custom Internet service name list. Custom Internet service name. |
string |
Maximum length: 79 |
|
||||||||||||||||
internet-service-custom-group |
Custom Internet Service group list. Custom Internet Service group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
internet-service-group |
Internet Service group list. Internet Service group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
internet-service-name |
Internet service name list. Internet service name. |
string |
Maximum length: 79 |
|
||||||||||||||||
jitter-weight |
Coefficient of jitter in the formula of custom-profile-1. |
integer |
Minimum value: 0 Maximum value: 10000000 |
0 |
||||||||||||||||
latency-weight |
Coefficient of latency in the formula of custom-profile-1. |
integer |
Minimum value: 0 Maximum value: 10000000 |
0 |
||||||||||||||||
link-cost-factor |
Link cost factor. |
option |
- |
latency |
||||||||||||||||
|
|
|||||||||||||||||||
link-cost-threshold |
Percentage threshold change of link cost values that will result in policy route regeneration. |
integer |
Minimum value: 0 Maximum value: 10000000 |
10 |
||||||||||||||||
load-balance |
Enable/disable load-balance. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
minimum-sla-meet-members |
Minimum number of members which meet SLA. |
integer |
Minimum value: 0 Maximum value: 255 |
0 |
||||||||||||||||
mode |
Control how the SD-WAN rule sets the priority of interfaces in the SD-WAN. |
option |
- |
manual |
||||||||||||||||
|
|
|||||||||||||||||||
name |
SD-WAN rule name. |
string |
Maximum length: 35 |
|
||||||||||||||||
packet-loss-weight |
Coefficient of packet-loss in the formula of custom-profile-1. |
integer |
Minimum value: 0 Maximum value: 10000000 |
0 |
||||||||||||||||
passive-measurement |
Enable/disable passive measurement based on the service criteria. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
priority-members |
Member sequence number list. Member sequence number. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
|
||||||||||||||||
priority-zone |
Priority zone name list. Priority zone name. |
string |
Maximum length: 79 |
|
||||||||||||||||
protocol |
Protocol number. |
integer |
Minimum value: 0 Maximum value: 255 |
0 |
||||||||||||||||
quality-link |
Quality grade. |
integer |
Minimum value: 0 Maximum value: 255 |
0 |
||||||||||||||||
role |
Service role to work with neighbor. |
option |
- |
standalone |
||||||||||||||||
|
|
|||||||||||||||||||
shortcut |
Enable/disable shortcut for this service. |
option |
- |
enable |
||||||||||||||||
|
|
|||||||||||||||||||
shortcut-priority |
High priority of ADVPN shortcut for this service. |
option |
- |
auto |
||||||||||||||||
|
|
|||||||||||||||||||
sla-compare-method |
Method to compare SLA value for SLA mode. |
option |
- |
order |
||||||||||||||||
|
|
|||||||||||||||||||
sla-stickiness |
Enable/disable SLA stickiness. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
src |
Source address name. Address or address group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
src-negate |
Enable/disable negation of source address match. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
src6 |
Source address6 name. Address6 or address6 group name. |
string |
Maximum length: 79 |
|
||||||||||||||||
standalone-action |
Enable/disable service when selected neighbor role is standalone while service role is not standalone. |
option |
- |
disable |
||||||||||||||||
|
|
|||||||||||||||||||
start-port |
Start destination port number. |
integer |
Minimum value: 0 Maximum value: 65535 |
1 |
||||||||||||||||
start-src-port |
Start source port number. |
integer |
Minimum value: 0 Maximum value: 65535 |
1 |
||||||||||||||||
status |
Enable/disable SD-WAN service. |
option |
- |
enable |
||||||||||||||||
|
|
|||||||||||||||||||
tie-break |
Method of selecting member if more than one meets the SLA. |
option |
- |
zone |
||||||||||||||||
|
|
|||||||||||||||||||
tos |
Type of service bit pattern. |
user |
Not Specified |
|
||||||||||||||||
tos-mask |
Type of service evaluated bits. |
user |
Not Specified |
|
||||||||||||||||
use-shortcut-sla |
Enable/disable use of ADVPN shortcut for quality comparison. |
option |
- |
enable |
||||||||||||||||
|
|
|||||||||||||||||||
users |
User name. User name. |
string |
Maximum length: 79 |
|
||||||||||||||||
zone-mode |
Enable/disable zone mode. |
option |
- |
disable |
||||||||||||||||
|
|
config sla
Parameter |
Description |
Type |
Size |
Default |
---|---|---|---|---|
health-check |
SD-WAN health-check. |
string |
Maximum length: 35 |
|
id |
SLA ID. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
config zone
Parameter |
Description |
Type |
Size |
Default |
||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
advpn-health-check |
Health check for ADVPN local overlay link quality. |
string |
Maximum length: 35 |
|
||||||||
advpn-select |
Enable/disable selection of ADVPN based on SDWAN information. |
option |
- |
disable |
||||||||
|
|
|||||||||||
minimum-sla-meet-members |
Minimum number of members which meet SLA when the neighbor is preferred. |
integer |
Minimum value: 1 Maximum value: 255 |
1 |
||||||||
name |
Zone name. |
string |
Maximum length: 35 |
|
||||||||
service-sla-tie-break |
Method of selecting member if more than one meets the SLA. |
option |
- |
cfg-order |
||||||||
|
|