This article describes how to edit a VLAN ID for a VLAN virtual interface after creation.

FortiGate v7.0.0, v7.2.9 and above.

There is a new feature starting v7.0.0, which is called the Interface Migration Wizard: Interface migration wizard

This feature also added an edit button for VLAN IDs on the GUI.

1. Edit the VLAN Interface; it will show the VLAN configuration. Select the 'Edit' button beside the VLAN ID.

2. Change the VLAN ID to the desired VLAN ID, then select 'Next':

3. On the Update VLAN ID, review the references. If the VLAN Interface is used as a System NTP or its Interface IP is used as FortiAnalyzer Source-IP, it will not allow updating the VLAN ID. Remove the reference first, before updating the VLAN ID. Select the 'Update'. button. A pop-up window will appear; select 'OK'.

4. The VLAN ID is now updated.

Note:

If, when trying to make a change on the VLAN ID, the following error is encountered, the references need to be removed beforehand, and then the required change will take effect.

If the VLAN has multiple references that cannot be removed as a workaround, take a backup of the firewall configuration, edit the VLAN ID of the VLAN in Notepad, and restore the configuration on the firewall: Configuration backups and reset

While uploading the modified configuration, if the error 'Invalid configuration file or password required' is encountered, then the references need to be removed beforehand, and then the required change will take effect.

In CLI, the following error will be presented:

VLAN ID, VLAN protocol or physical interface cannot be changed once a VLAN has been created.

After removing the references for this VLAN interface, the changes should be possible.

Note:

VLAN ID is tied to the interface object name and internal references. For this reason, the Web GUI does not allow modifying it directly to avoid inconsistencies in dependent policies or objects.