Technical Tip: Unable to find interface on VPN Manager in FortiManager
Description
This article describes how to add physical interface via a VPN manager, if physical interface was previously part of a Zone .
Solution
First of all, check if the interface is part of a zone in the FortiGate:
This article describes how to add physical interface via a VPN manager, if physical interface was previously part of a Zone .
Solution
First of all, check if the interface is part of a zone in the FortiGate:
Then, check if the interface is imported in FortiManager:If these settings are configured in both devices, this interface is not visible in VPN Manager when creating Default VPN interface under VPN Communities:Go to FortiManager -> VPN Manager -> VPN community -> create new managed gateway step 3This issue can be seen with existing Zones and using these zone configuration when configuring IPsec tunnel.The reason for this issue is because VPN Manager creates zones automatically by default and assigns those VPN interfaces to zone.This is default settings under VPN community:
This can be disabled for future configuration when creating IPsec Tunnels but for existing zones, physical port must be removed and un-mapped in FMG:
After this physical port (example: port4) in Default VPN interface settings can be seen and added to the configuration:IPSec VPN will be created without any issues:
