Separate VRF for Out-of-Band Management in FortiOS

I am currently running FortiOS 6.4 on this FortiGate.  The use case is to have an out-of-band interface that points to a separate routing table or in this case, a VRF which stands for Virtual Routing and Forwarding.  In my scenario I will create one interface port22 as the out-of-band interface.   I configured a fake IP address and routed to a fake network just for this article.

Here you can see the standard interface configuration.  The only difference is the addition of the set vrf 1 statement.

Note: The default VRF is 0.

Essentially anything routed across via this interface, will be part of VRF1.

Here we can see entry 5 where I am creating a static route to 10.200.200.0/24 with a gateway of 1.1.1.2 and the device is port22 (This route is now part of VRF1).

When we look at the routing table, we can see the two routes.

by issuing the get route info routing-table all you can see that there is a route to 10.200.200.0/24 via 1.1.1.2 under the VRF=1 section.

Note: See the default routing table which is VRF=0.

Hope this helps.