This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.
Created on 03-18-2021 10:22 AM
Created on 03-18-2021 12:04 PM
Created on 03-19-2021 08:29 AM
Yes that is correct and completely understand the frustration with that in particular ( been down that road before ). This is one thing I am hoping to see changed in future FortiOS versions giving a little more flexibility in interface / zone usage in policies.
Similarly if there is any Aggregate interface and if it has a VLAN underneath with references, you will need to delete all the references first before you can add that VLAN to a zone.
Delete will be grayed out until references are removed.
If you cannot delete from GUI, you also have option to edit the config file in notepad (delete references from config file), and then restore it back to the firewall. FortiGate will perform a reboot upon restore of the config file so it should be done in the maintenance period or off-peak hours.