A network administrator is configuring SD-WAN on a FortiGate. The organization has two internet links: MPLS (primary) and broadband (backup). The administrator wants all traffic to use the MPLS link unless it fails, in which case traffic should fail over to the broadband link. Which SD-WAN configuration best achieves this requirement?
Trap 1: Enable 'set role' on the MPLS link as 'primary' and on the…
FortiGate SD-WAN does not have a 'role' setting or 'redundant' strategy; these are not valid options.
Trap 2: Configure both links in the SD-WAN zone with equal priority and use…
Equal priority would not enforce active/passive behavior; traffic might be load-balanced. The 'lowest cost' strategy is not the primary method for failover.
Trap 3: Create two static routes: one with higher distance for MPLS and one…
Static route distance is not used for SD-WAN member selection; SD-WAN rules use priorities and strategies.
- A
Set the MPLS link priority to 10 and the broadband link priority to 5, then configure an SD-WAN rule with the 'best quality' strategy.
Higher priority for MPLS ensures it is preferred. The 'best quality' strategy selects the member with the highest priority when available, providing failover.
- B
Enable 'set role' on the MPLS link as 'primary' and on the broadband link as 'standby' with the 'redundant' strategy.
Why wrong: FortiGate SD-WAN does not have a 'role' setting or 'redundant' strategy; these are not valid options.
- C
Configure both links in the SD-WAN zone with equal priority and use the 'lowest cost' strategy.
Why wrong: Equal priority would not enforce active/passive behavior; traffic might be load-balanced. The 'lowest cost' strategy is not the primary method for failover.
- D
Create two static routes: one with higher distance for MPLS and one with lower distance for broadband.
Why wrong: Static route distance is not used for SD-WAN member selection; SD-WAN rules use priorities and strategies.