FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
salemneaz
Staff
Staff
Article Id 348984
Description This article describes how to manually migrate the objects or Firewall Policies after integrating interfaces.
Scope FortiOS 7.2 and above.
Solution

Migrating an existing interface to FortiLink or a Zone, such as SD-WAN, sometimes causes some objects to be deleted, such as a Firewall Policy Virtual IP address or address object. This shows in the Firewall GUI after the migration is complete. For example:

 

1.jpg

 

  • Take a configuration backup before the migration.
  • After the migration, take a screen shot from the GUI to identify the failed policy number and address objects.
  • Open the previous configuration in a Notepad++.
  • On the keyboard, press 'CTRL+F' and, under Find What Field, enter 'Port3'. Select 'Mark', then 'Mark All'.

2.jpg

 

  • This will Mark all the Port3s in the configuration file, including address object and Policy.
  • After, scroll down to the Firewall Policy.

3.jpg

 

  • Replace the srcintf with FortiLink and put it at the Firewall from the CLI.
  • This technique is helpful if multiple policies and address objects are missing. Use the 'Find and Replace' option to replace them all.

4.jpg