Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
jbindra
Staff
Staff

Created on ‎08-08-2024 10:40 AM

Article Id 331663

Troubleshooting Tip: Cannot Integrate WAN interface to a Zone

Description This article describes what to check if errors are received while integrating a WAN interface to a zone.
Scope FortiGate.
Solution

Integrating a WAN (Wide Area Network) interface into a zone can occasionally result in errors, preventing successful integration.

Below are key issues to check when encountering such errors:

 

Error vips.PNG

 

  1. Virtual IPs (VIPs) Configuration.

When integrating a WAN interface, ensure that no Virtual IPs (VIPs) are referencing the WAN interface. If VIPs are configured to use the WAN interface, errors may be encountered as shown in the screenshot.

To resolve this, check the list of configured VIPs to ensure none are associated with the WAN interface.

 

  1. SSL VPN Setup.

Errors may also arise if SSL VPN is configured to use the WAN interface. This can conflict with the WAN integration process.

To resolve this, remove the WAN interface from SSL VPN settings. Once the WAN interface is integrated to a Zone, put the Zone in the listening interface under SSL VPN settings.

 

Related document:

Interface migration wizard - FortiGate administration guide.
172
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.