Skip to main content
Sa_Nour
Sa_Nour
New Member
December 13, 2023
Question

tunnel interface is not getting disable

  • December 13, 2023
  • 6 replies
  • 3577 views

Hi guys, Need help in disabling tunnel interface, i want to remove IPsec tunnel but since tunnel interface is enabled it is not getting removed.

 

When i press disable button in tunnel interface, error appears as below

 

"Entry not found in data source

Attribute 'interface value'  checking fail

 

6 replies

ozkanaltas
ozkanaltas
Valued Contributor III
December 13, 2023

Hello @Sa_Nour ,

 

If you remove tunnel configuration from vpn menu, the tunnel interface is removed automatically. You don't need to disable the tunnel interface to remove tunnel configuration.

 

If you can't remove tunnel configuration, firstly you should remove references to tunnel configuration.

    Sa_Nour
    Sa_NourAuthor
    New Member
    December 14, 2023

    Thanks @ozkanaltas 

    i already removed all references, still not getting disabled and there is an error i mentioned

      ozkanaltas
      ozkanaltas
      Valued Contributor III
      December 14, 2023

      @Sa_Nour ,

       

      Did you change IPsec or IPsec interface name before? 

       

      Also, I mentioned before. If you want to delete the ipsec configuration you don't need to disable ipsec interface. You can click delete button on the vpn page as like shown the screen shot. This button remove automatically ipsec interface. image.png

        mle2802
        Staff
        mle2802
        Staff
        December 14, 2023

        Hi @Sa_Nour,

        Did you try with CLI instead?

        Regards,
        Minh

          KumarV
          Staff
          KumarV
          Staff
          December 17, 2023

          @Sa_Nour, You can try to delete it using the commands below:

          #config vpn ipsec phase1-interface

          #delete <name>

          #end

           

          Regards

          Verender

           

            Toshi_Esumi
            SuperUser
            Toshi_Esumi
            SuperUser
            December 17, 2023

            It might have become a zombie. Try rebooting the unit.

             

            Toshi

              maulishshah
              Staff
              maulishshah
              Staff
              December 17, 2023

              hi @Sa_Nour , I think you still have phase2 configuration, as if rebooting firewall not fix your issue then please try to confirm the phase 2 configuration is still there or not. 

               

              Please try to refer the article and check if you can fin any reference through CLI: https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-Check-Referenced-Objects/ta-p/194815

               

              https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-Check-Referenced-Objects/ta-p/194815

               

              In addition, you can do 

               

              show full | grep "tunnel-name"

               

              Best Regards,

              Maulish 

                ssteo
                Staff
                ssteo
                Staff
                December 18, 2023

                Hi @Sa_Nour , you can use CLI to see got anything reference to that IPSEC tunnel or not.

                Below is the commands:

                show full | grep "tunnel-name" f 

                So it will show anything related to that tunnel-name then can use CLI to delete it.

                 

                 

                  Terms & ConditionsAccessibility statement