VPN Interface' s not available for Zone

Forum|Forum|14 years ago
March 6, 2012
4 replies
8608 views

I' m trying to add all of our site to site interface VPN' s to a Zone, allowing us to create a couple of simple policies, rather than 2 each. But the VPN' s do not appear as available interfaces under the Zone configuration. These are New VPN' s with no references. We have a FortiGate 110C on MR3 Patch3. We have 22 remote sites, so any help would be very appreciated. Thanks.

Paul_Dean

Visitor III

Hi Gareth, the VPN interface won' t appear in the list of available interfaces for the Zone if there are parts of the configuration that reference it. You need to delete things like firewall policies you may have created in order to then add the VPN interface to the Zone. There are some exceptions to this such as static routes. Paul

rwpatterson

New Member

Address references and DHCP servers count too. All these need to be removed before you can move it into a zone.

GarethWestAuthor

New Member

Thanks for your reply Paul. I have only setup Phase 1 and Phase 2 of the Interface (WAN1) VPN' s, so they' re not referenced anywhere. It even states that under Interfaces. But I have a Zone which only 2 show, seems very strange. Thanks.

GarethWestAuthor

New Member

I have looked into this and found in the documentation for MR3 Patch3 the below: 159005 Zone member interfaces may not be listed correctly. So I will update to Patch 4 tonight and post an update. Thanks

ede_pfau

SuperUser

I' d rather update to v4.00 MR3 patch 5 as it fixes a lot of other bugs.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded