Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
kkhushdeep
Staff
Staff

Created on ‎10-13-2024 11:12 PM Edited on ‎07-15-2025 01:38 AM By Community Manager

Article Id 349049

Technical Tip: To Delete IPSec VPN tunnel Phase2 selector

Description

This article explains how to delete IPSec phase 2 selector from the CLI of the FortiGate if there is no option to delete it from GUI.
Scope FortiGate.
Solution

In this example name of the phase2 selector of the IPSec tunnel is 'FGT_VPNIPSEC'. The following image shows the Phase 2 Selector configuration from the FortiGate GUI.

 

kkhushdeep_0-1728846267304.png

 

To delete the phase2 selector use the following commands:

 

config vpn ipsec phase2-interface

delete <Phase2Selector_name>

end

 

The following Image shows the example of deleting phase2 selector 'FGT_VPNIPSEC':

 

kkhushdeep_1-1728846267308.png

 

The following image shows the results from the FortiGate GUI.

 

kkhushdeep_2-1728846267310.png

 

The other way to do this is shown below with a tunnel called RA_test.

 

In the VPN tunnel section, select the number in the reference column, select the phase2 tunnel entry to be deleted, then select 'delete'.

 

ref.PNG

 

ref list.PNG
3901
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.