Fortinet white logo
Fortinet white logo

Administration Guide

Performance SLA (central management)

Performance SLA (central management)

Create a Performance SLA in FortiManager that can be used to monitor the SD-WAN performance in FortiGate devices. You can also create a Performance SLA in FortiManager. If all links meet the SLA criteria, the FortiGate uses the first link, even if that link isn’t the best quality. If at any time, the link in use doesn’t meet the SLA criteria, and the next link in the configuration meets the SLA criteria, the FortiGate changes to that link. If the next link doesn’t meet the SLA criteria, the FortiGate uses the next link in the configuration if it meets the SLA criteria, and so on.

To create a new performance SLA:
  1. If using ADOMs, ensure that you are in the correct ADOM.
  2. Go to Device Manager > SD-WAN > SD-WAN Template.
  3. Click Create New in the content pane toolbar, or right-click and select Create New. The Create New page opens.
  4. In the Performance SLA toolbar, click Create New. The Create Performance SLA dialog-box opens

  5. Enter the following information, and click OK to create the performance SLA:

    Name

    Enter the name of the performance SLA.

    Detect Protocol Select the detection method for the profile check:
    • Ping
    • TCP ECHO
    • UDP ECHO
    • HTTP
    • TWAMP
    Detect Server Enter the IP address of the WAN interface that you want to monitor.
    Member Select available interface members. The interfaces must already be added to the template.
    SLA

    Click Create New to create a new SLA. Enable and enter the Jitter Threshold (in milliseconds), Latency Threshold (in milliseconds), and Packet Loss Threshold (in percent), then click OK to create the SLA.

    SLAs can also be edited and deleted as required.

    Link Status

    Interval

    Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 1).

    Failure Before Inactive

    Specify the number of failures before the link becomes inactive (1 - 10, default = 5).

    Restore Link After

    Specify the number of successful responses received before server is considered recovered (1 - 10, default = 5).

    Action When Inactive

    Specify what happens with the WAN link becomes inactive.

    Update Static Route

    Select to update the static route when the WAN link becomes inactive.

    Cascade Interfaces

    Select to cascade interfaces when the WAN link becomes inactive.

    Advanced Options

    addr-mode

    Address mode (IPv4 or IPv6).

    http-get

    URL used to communicate with the server if the protocol if the protocol is HTTP.

    http-match

    Response string expected from the server if the protocol is HTTP.

    interval

    Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 5).

    packet-size

    Packet size of a TWAMP test session (64 - 1024).

    threshold-alert-jitter

    Alert threshold for jitter (ms, default = 0), range [0-4294967295].

    threshold-alert-latency

    Alert threshold for latency, in milliseconds (0 - 4294967295, default = 0).

    threshold-alert-packetloss

    Alert threshold for packet loss, in percent (0 - 100, default = 0).

    threshold-warning-jitter

    Warning threshold for jitter, in milliseconds (0 - 4294967295, default = 0).

    threshold-warning-latency

    Warning threshold for latency, in milliseconds (0 - 4294967295, default = 0).

    threshold-warning-packetloss

    Warning threshold for packet loss, in percent (0 - 100, default = 0).

Performance SLA (central management)

Performance SLA (central management)

Create a Performance SLA in FortiManager that can be used to monitor the SD-WAN performance in FortiGate devices. You can also create a Performance SLA in FortiManager. If all links meet the SLA criteria, the FortiGate uses the first link, even if that link isn’t the best quality. If at any time, the link in use doesn’t meet the SLA criteria, and the next link in the configuration meets the SLA criteria, the FortiGate changes to that link. If the next link doesn’t meet the SLA criteria, the FortiGate uses the next link in the configuration if it meets the SLA criteria, and so on.

To create a new performance SLA:
  1. If using ADOMs, ensure that you are in the correct ADOM.
  2. Go to Device Manager > SD-WAN > SD-WAN Template.
  3. Click Create New in the content pane toolbar, or right-click and select Create New. The Create New page opens.
  4. In the Performance SLA toolbar, click Create New. The Create Performance SLA dialog-box opens

  5. Enter the following information, and click OK to create the performance SLA:

    Name

    Enter the name of the performance SLA.

    Detect Protocol Select the detection method for the profile check:
    • Ping
    • TCP ECHO
    • UDP ECHO
    • HTTP
    • TWAMP
    Detect Server Enter the IP address of the WAN interface that you want to monitor.
    Member Select available interface members. The interfaces must already be added to the template.
    SLA

    Click Create New to create a new SLA. Enable and enter the Jitter Threshold (in milliseconds), Latency Threshold (in milliseconds), and Packet Loss Threshold (in percent), then click OK to create the SLA.

    SLAs can also be edited and deleted as required.

    Link Status

    Interval

    Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 1).

    Failure Before Inactive

    Specify the number of failures before the link becomes inactive (1 - 10, default = 5).

    Restore Link After

    Specify the number of successful responses received before server is considered recovered (1 - 10, default = 5).

    Action When Inactive

    Specify what happens with the WAN link becomes inactive.

    Update Static Route

    Select to update the static route when the WAN link becomes inactive.

    Cascade Interfaces

    Select to cascade interfaces when the WAN link becomes inactive.

    Advanced Options

    addr-mode

    Address mode (IPv4 or IPv6).

    http-get

    URL used to communicate with the server if the protocol if the protocol is HTTP.

    http-match

    Response string expected from the server if the protocol is HTTP.

    interval

    Status check interval, or the time between attempting to connect to the server, in seconds (1 - 3600, default = 5).

    packet-size

    Packet size of a TWAMP test session (64 - 1024).

    threshold-alert-jitter

    Alert threshold for jitter (ms, default = 0), range [0-4294967295].

    threshold-alert-latency

    Alert threshold for latency, in milliseconds (0 - 4294967295, default = 0).

    threshold-alert-packetloss

    Alert threshold for packet loss, in percent (0 - 100, default = 0).

    threshold-warning-jitter

    Warning threshold for jitter, in milliseconds (0 - 4294967295, default = 0).

    threshold-warning-latency

    Warning threshold for latency, in milliseconds (0 - 4294967295, default = 0).

    threshold-warning-packetloss

    Warning threshold for packet loss, in percent (0 - 100, default = 0).