SD-WAN routing behavior in 12.4?
I have a post over in the legacy forums and also an open case, but I figure I'd post here with my concerns.
What I'm told is the "The traffic to the local Firebox address is sent out through the external interface because the policy has an SD-WAN action enabled". As a result, this is what occurs when trying to run tracert to the FB's private IP address (x.x.x.1) with 12.4:
Tracing route to x.x.x.1 over a maximum of 30 hops
1 <1 ms <1 ms <1 ms x.x.x.1
2 <1 ms <1 ms <1 ms FB.WAN.ADDRESS.1
3 ROUTER.IP.ADDRESS.1 reports: Destination net unreachable.
Why would the FB continue to route the traffic past the destination IP when SD-WAN is enabled?