Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sprashant
Staff
Staff

Created on ‎09-01-2025 10:26 PM

Article Id 395645

Technical Tip: Moving interface from one VDOM to another, with firewall sniffer reference

Description This article describes the issue when the reference object is a firewall sniffer.
Scope FortiGate.
Solution

From the Global VDOM, the port can be changed from one VDOM to another, see here.

However, sometimes a reference object causes an issue; to resolve delete the reference object, and then the link can be changed.

Go to Network -> Interfaces -> Select the interface in question, and always check for references.

 

3..PNG

 

For changes such as moving the interface from one VDOM to another, there should be no references.

 

References can be a simple sniffer that was run on the interface (in this case), but are not restricted to it; it can be an address, an address group associated with the interface, firewall policies, and more. Make sure there are no references before changing the interface.

 

To delete the sniffer reference, go to CLI:

 

config vdom

    edit <vdom-name>

        config firewall sniffer

        show    <--It will display associated sniffers.

        delete <sniffer name>

 

Once all the references are deleted, the VDOM can be changed.

 

Below is the workaround for it:

 

2025-06-0917-14-14-ezgif.com-crop.gif
98
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.