Fortinet black logo

Examples

6.4.0
7.4.0
7.2.0
7.0.0
6.4.0

Configuring performance SLA

Configuring performance SLA

This section describes how to create a new Performance SLA measured over ul-inet, OL_MPLS_DC1 and OL_MPLS_DC2.

Define two separate SLA targets:

  • Target #1: 200 ms latency
  • Target #2: 300 ms latency

We are going to use these two targets to demonstrate how you can apply different thresholds to different applications.

Note

For a proper logging and reporting, always set the values for sla-fail-log-period and sla-pass-log-period in each Performance SLA that you configure (see under “Advanced Options”)! By default, they are both set to 0, which means that FGTs will not send periodic SLA logs to FAZ. This will result in a lot of missing data in your reports and widgets!

Creating SD-WAN rules for the primary hub

In the SD-WAN rule for the primary hub, we specify only the interface members connecting to the Primary Hub (DC1), and OL_INET_DC1 comes first in the list.

When using the Lowest Cost (SLA) strategy, preference is defined by configuration order, among others. The first interface that matches the SLA will be selected, which is precisely what we want to achieve here.

To create an SD-WAN rule for the primary hub:
  1. Go to Device Manager > SD-WAN > SD-WAN templates.
  2. Double-click the template named sdwan.branches to open it for editing.
  3. In the SD-WAN rules section, click Create New.
  4. Set the following options, and click OK.
    1. In the Name box, type Corporate-Primary.
    2. Under Source, click Source Address, and select the corporate network.
    3. Under Destination, click Source, and click Click here to select to select the corporate network.
    4. Under Outgoing Interfaces, click Lowest Cost (SLA).
    5. Beside Interface Preference, click Click here to select, and select OL_INET_DC1, and then OL_MPLS_DC1.
    6. Beside Required SLA Target, click Click here to select, and select DC#1.

    The rule is created.

  5. Click OK to save the SD-WAN template.

Creating SD-WAN rules for the secondary hub

In the SD-WAN rule for the secondary hub, we specify only the interface members connecting to the Secondary Hub (DC2), and OL_INET_DC2 comes first in the list.

Open the SD-WAN template named sdwan.branches for editing, and create a rule for the secondary hub.

When you are done, you will have the following rules in the SD-WAN template:

Previous
Next

Configuring performance SLA

This section describes how to create a new Performance SLA measured over ul-inet, OL_MPLS_DC1 and OL_MPLS_DC2.

Define two separate SLA targets:

  • Target #1: 200 ms latency
  • Target #2: 300 ms latency

We are going to use these two targets to demonstrate how you can apply different thresholds to different applications.

Note

For a proper logging and reporting, always set the values for sla-fail-log-period and sla-pass-log-period in each Performance SLA that you configure (see under “Advanced Options”)! By default, they are both set to 0, which means that FGTs will not send periodic SLA logs to FAZ. This will result in a lot of missing data in your reports and widgets!

Creating SD-WAN rules for the primary hub

In the SD-WAN rule for the primary hub, we specify only the interface members connecting to the Primary Hub (DC1), and OL_INET_DC1 comes first in the list.

When using the Lowest Cost (SLA) strategy, preference is defined by configuration order, among others. The first interface that matches the SLA will be selected, which is precisely what we want to achieve here.

To create an SD-WAN rule for the primary hub:
  1. Go to Device Manager > SD-WAN > SD-WAN templates.
  2. Double-click the template named sdwan.branches to open it for editing.
  3. In the SD-WAN rules section, click Create New.
  4. Set the following options, and click OK.
    1. In the Name box, type Corporate-Primary.
    2. Under Source, click Source Address, and select the corporate network.
    3. Under Destination, click Source, and click Click here to select to select the corporate network.
    4. Under Outgoing Interfaces, click Lowest Cost (SLA).
    5. Beside Interface Preference, click Click here to select, and select OL_INET_DC1, and then OL_MPLS_DC1.
    6. Beside Required SLA Target, click Click here to select, and select DC#1.

    The rule is created.

  5. Click OK to save the SD-WAN template.

Creating SD-WAN rules for the secondary hub

In the SD-WAN rule for the secondary hub, we specify only the interface members connecting to the Secondary Hub (DC2), and OL_INET_DC2 comes first in the list.

Open the SD-WAN template named sdwan.branches for editing, and create a rule for the secondary hub.

When you are done, you will have the following rules in the SD-WAN template:

Previous
Next