Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mgoswami
Staff
Staff

Created on ‎03-29-2023 11:30 PM

Article Id 250788

Technical Tip: Add a new member to address group without removing the current address from CLI

Description This article describes that when a new member is added to an address group that already has some members attached to it, it will replace all the existing members and will add only the new member to it.
Scope FortiGate.
Solution

Instead of 'add member', use the append member command to update the existing member list along with the new member.

 

To check current member in addrgrp:

 

# sh firewall addrgrp TEST | grep member
    set member "test" "test1"

 

To append a new member to the TEST addrgrp:

 

# config firewall addrgrp

   (addrgrp) # edit TEST

   (TEST) # append member test2

   (TEST) # end

 

To view the new member in addrgrp:

 

# sh firewall addrgrp TEST | grep member
    set member "test" "test1" "test2"

 

2023-03-30 08_29_24-Untitled_ ‎- Paint 3D.png
186
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.