Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
kinmun
New Contributor

duplicate entry already exists

I am creating new VIP for WAN to DMZ access, but when i create new VIP, I encountered the "A Duplicate entry already exists" error upon clicking the OK button.

 

2 REPLIES 2
emnoc
Esteemed Contributor III

In situations like  these it's best to execute the  following from cmd-cli

 

 

show | grep -f <x.x.x.x>

 

The x.x.x.x would be the vip public address.

 

PCNSE 

NSE 

StrongSwan  

kinmun
New Contributor

 

GV-PRI-FW01 # show | grep -f 203.2xx.xx config firewall address edit "gvpub.gv_owned01.73" set uuid 4b636886-d862-51e4-d1bc-ba1edbf62e77 set associated-interface "port2" set subnet 203.208.xxx.xx 255.255.255.255 <--- next end config firewall vip edit "gvpub.gv_owned01.73-dmz.nosql.103" set uuid 7db8ea00-d92e-51e4-ecb7-cc5fceee97a0 set comment "no sql server 101" set extip 203.208.xxx.xx <--- set extintf "port2" set portforward enable set mappedip "10.203.1.xxx" set protocol udp set extport 1194 set mappedport 1194 next edit "gvpub.gv_owned01.73-dmz-no.sql.103" set uuid ee7c7ab0-5f95-51e6-f610-66c19ec77cba set comment "no sql server 103" set extip 203.208.xxx.xx <--- set extintf "port2" set portforward enable set mappedip "10.203.1.xxx" set extport 443 set mappedport 443 next edit "gvpub.gv_owned01.73-dmz.crm.staging.97" set uuid 186960fe-5f96-51e6-b7e4-79e27a9750a4 set comment "crm api server staging.97" set extip 203.208.xxx.xx <--- set extintf "port2" set portforward enable set mappedip "10.203.1.xx" set extport 8443 set mappedport 8443 next edit "gvpub.gv_owned01.73-dmz.crm.prod.98" set uuid 0b260926-09e9-51e7-b312-bafbd86e8a4f set comment "crp api production.98" set extip 203.208.xxx.xx <--- set extintf "port2" set portforward enable set mappedip "10.203.1.xx" set extport 7443 set mappedport 7443 next end