Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Taha1
New Contributor

Created on ‎11-28-2022 11:55 PM

A duplicate entry already exists VIP

Hello EvryOne

 

We are using FortiGate201F v6.4.11

We have an internal web based application and I want my users to be able to connect to that application from outside our network.

So I wanted to NAT between our public IP and private IP

So am getting the below error:

 

A duplicate entry already exists.

The extip is overlapped with the gateway of static route.

 

So I searched the firewall I found that the same Public IP is defined as Gateway Address .

 

am not sure what that’s mean ?

Would any one kindly help.

 

Thanks.

Best Regards
Labels:
1645
0 Kudos
1 Solution
Toshi_Esumi
Esteemed Contributor III

Created on ‎11-29-2022 09:03 AM

That generally means the static route was misconfigured whoever configured it. You need to judge if you can/should remove it based on the destination subnet.

 

Toshi

View solution in original post

1630
5 REPLIES 5
anikolov
Staff
Staff

Created on ‎11-29-2022 02:35 AM

Helo Taha1,

 

What is the subnet that you are using for a gateway? You can choose some other IP address with which you will do the VIP. Can you please share the related configuration for the VIP that you are trying to use? Interface, static route, VIP policy, firewall policy, static route?

 

Since I am asking you to provide parts of the configuration, some malicious user can read this, so you can mask the real IPs or use trusted host. 

 

Regards,

 

Aleksandar Nikolov
1638
Toshi_Esumi
Esteemed Contributor III

Created on ‎11-29-2022 09:03 AM

That generally means the static route was misconfigured whoever configured it. You need to judge if you can/should remove it based on the destination subnet.

 

Toshi

1631
Taha1
New Contributor

Created on ‎12-21-2022 04:18 AM

Dear All,

thanks alot for the support

the issue was related to the Static Route .

we have fixed it and every thing is fine now.

 

thanks.

Best Regards
1546
0 Kudos
wcs
New Contributor
In response to Taha1

Created on ‎09-05-2023 08:45 PM

the problem same with me, everything is fine before i upgrade the fortigate from  5.6.3 to v7.0.12,

can you share with me what do you do to solve this isseu

 

thanks

456
0 Kudos
Toshi_Esumi
Esteemed Contributor III
In response to wcs

Created on ‎09-06-2023 07:41 PM

As I said two years ago, if you "found that the same Public IP is defined as Gateway Address", "That generally means the static route was misconfigured whoever configured it. You need to judge if you can/should remove it based on the destination subnet."

 

Toshi

413
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.