Fortinet Community

Taha1 · ‎11-28-2022

Hello EvryOne

We are using FortiGate201F v6.4.11

We have an internal web based application and I want my users to be able to connect to that application from outside our network.

So I wanted to NAT between our public IP and private IP

So am getting the below error:

A duplicate entry already exists.

The extip is overlapped with the gateway of static route.

So I searched the firewall I found that the same Public IP is defined as Gateway Address .

am not sure what that’s mean ?

Would any one kindly help.

Thanks.

Best Regards

Toshi_Esumi · ‎11-29-2022

That generally means the static route was misconfigured whoever configured it. You need to judge if you can/should remove it based on the destination subnet.

Toshi

View solution in original post

anikolov · ‎11-29-2022

Helo Taha1,

What is the subnet that you are using for a gateway? You can choose some other IP address with which you will do the VIP. Can you please share the related configuration for the VIP that you are trying to use? Interface, static route, VIP policy, firewall policy, static route?

Since I am asking you to provide parts of the configuration, some malicious user can read this, so you can mask the real IPs or use trusted host.

Regards,

Aleksandar Nikolov

Toshi_Esumi · ‎11-29-2022

That generally means the static route was misconfigured whoever configured it. You need to judge if you can/should remove it based on the destination subnet.

Toshi

Taha1 · ‎12-21-2022

Dear All,

thanks alot for the support

the issue was related to the Static Route .

we have fixed it and every thing is fine now.

thanks.

Best Regards

Fortinet Community

A duplicate entry already exists VIP