Description | This article describes how to synchronize the VPN tunnel created by the VPN manager back when the device was removed and re-added to FortiManager. |
Scope | FortiManager. |
Solution |
When VPN tunnels are created by the VPN manager for some reason FortiGate was removed from Fortimanager. This will put the device out of sync with Fortimanager. Upon adding the device back, VPN tunnels will be removed on the next policy package install.
To avoid the removal of tunnels, follow these steps:
Note: The tunnel names installed to the FortiGate device by VPN Manager have Hexadecimal sequence and the ID of vpnmgr nodes in the FortiManager database is in Decimal format. Therefore the 10th vpnmgr node has its tunnel named as 1a and 16th node as 10.
exe fmpolicy print-adom-object 3 1005 all
Example of CLI output showing the vpnmgr node for 'VPN-Mesh_a' tunnel:
config vpnmgr node edit "4" next
Related article: Technical Tip: Deploying VPN configuration via FortiManager VPN Manager |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.