Description | This article describes that it is necessary to group Internet Services to use them in a policy, it may happen to receive the 'Entry not found in datasource' error. |
Scope | FortiOS 6.2, 6.4, 7.0, 7.2, 7.4. |
Solution |
In this case, it is necessary to check the 'direction' attribute of the Internet Service group and match it with the same attribute of the Internet Service:
config firewall internet-service-group show full
config firewall internet-service-group set direction ?
diag internet-service id-summary 327681
Or:
diag internet-service id-summary 327903
Internet Services with directions 'both' can be added to groups with directions 'destination' and 'source'. For example, if the group direction is 'both', it is possible to add only Microsoft-Office365.Published.Allow ('both'), but not Microsoft-Web ('dst') to it. However, if changing the type to 'destination', it is possible to add both services.
This configuration can be done only from CLI. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.