FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
pdelapena
Staff
Staff
Article Id 360182
Description This article describes the cause of the error 'Duplicate entry found.' when creating or editing SDWAN rules via GUI and how this can be resolved.
Scope FortiGate.
Solution

It is possible to create SD-WAN rules via the CLI without naming them. The issue where an administrator is unable to create or edit SD-WAN rules in the GUI manifests when there are two or more SD-WAN rules created in the CLI without any names.

 

Example config of an SD-WAN rule created via the CLI (both '1' and '2' have no configured name):


config system sdwan

config service

edit 1

set dst "all"
set src "192.168.10.0/24"
set priority-zone "virtual-wan-link"

next
edit 2

set dst "all"
set src "192.168.20.0/24"
set priority-zone "virtual-wan-link"

next

end

end

 

It is required when creating or editing an SD-WAN rule in the GUI to put up a name and, when left blank, it notifies the administrator that the 'Name' field needs to be filled up. However, no matter what name is input, an error saying 'Duplicate entry found.' can be seen when trying to name the SD-WAN rule.

 

dup2.JPG

 

dup1.JPG

 

Creating a new SD-WAN rule via CLI is still possible. However, the same 'Duplicate entry found' error will show up when editing it via the GUI.

 

To fix the issue, edit and supply names for SD-WAN rules '1' and '2' via CLI.

 

config system sdwan

config service

edit 1

set name "test1"

next
edit 2

set name "test2"

next

end

end

 

After the changes, it should be possible for the SD-WAN rules to be created and edited via the GUI.

 

dup3.JPG

 

The SD-WAN rule '3' named 'test3' has been created, while the SD-WAN rule '1' named 'test1' was edited with additional subnet in Source address.

Contributors