Fortigate 200B - Invalid IP Address Range when trying to create

GenieMaster used Ask the Experts™
We have a Fortigate 200B firewall and we have 2 active WAN connections from different providers. This is not for fault tolerance but more to load balance traffic from some computers to use WAN1 and some to use WAN2. I am trying to create a policy route and for the source address I want to add the range I have tried putting it in like that but I get an error Invalid IP Range (see pic). I have also tried putting in as 10.10.128.[101-130] and it show an error with what looks like an example to the side of,  (see pic) The version of the software I have is v5.2.10, build742 (GA). Any ideas what I am doing wrong ? I have tried and - and -
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Aaron TomoskyDirector of Solutions Consulting
I bet it wants cidr notation. Try
That will give you 96-127
Consulting and Network/Security Specialist
Policy routing configuration does not permit IP ranges ... you can only use them in address objects ...
For your above range, you will need to create multiple entries with:

Or, you could select using some subnet which saves you the work of putting all those partial networks in there, like Aaron wrote ... ;)


I was hoping in not having to define subnet masks to allocate the range required. So silly Fortinet for not allowing the entry of an IP Range. Even though if you add an invalid entry it shows you an example that an IP Range can be added..
You can not even add another line, you need to add all of the subnet mask entries into 1 line. Thanks for your answers, it seems that this is the only way to do for now.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial