The below video showcase how to generate an SD-WAN health check event log using FortiGate Device.

 

 

By default, there are no events generated when a health check is done in the FortiGate firewall.

When we set latency as 10ms (parameter) in the performance SLA threshold of SD-WAN, there is no event generated when the health check fails in the SD-WAN rules. In order to retrieve these events, there is a need to add an external command in SD-WAN. And this option is present in GUI. i.e “set SLA-fail-log-period 30“. What this command does is that, If Google reachability health check fails then logs are collected every 30 seconds by firewall.