Description |
When the FortiGate is in the state, where there is a tunnel interface configured, but the VPN itself is already deleted, the tunnel interface cannot be deleted directly.
This article describes how to delete it.
This interface also cannot be directly deleted from CLI:
# show system interface ipsec-tunnel config system interface FGT # config system interface
A tunnel interface cannot be deleted directly. FortiGate (interface) #end |
Scope | FortiGate |
Solution |
The workaround is to create an IPSec interface and then delete this VPN.
FGT # config vpn ipsec phase1-interface
new entry 'ipsec-tunnel' added FGT (ipsec-tunnel) # set remote-gw 192.0.2.1
entry is not found in table FGT #
Note. The VPN interface must have precisely the same name as the interface that needs to be removed.
Related Article: Technical Tip: Unable to delete VPN tunnel even if policy/routes are deleted |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.