Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Gerrit_Loopmans
New Contributor

Created on ‎03-05-2018 05:51 AM

Adom upgrade from 5.4 to 5.6 on FortiManager 5.6.2

Hi all,

 

I have an issue when trying to upgrade my ADOM from 5.4 to 5.6.

Anyone has had this issue or knows what is going wrong?

 

This is the error:

 

Fail(errno=151):dynamic-interface default mapping has been used

 

 

All devices in the Adom have been upgraded from 5.4.4 to 5.6.3

 

 

thanks in advance

10700
0 Kudos
6 REPLIES 6
ergotherego
Contributor II

Created on ‎03-05-2018 10:44 PM

Your picture did not attach correctly, FYI.

 

3882
0 Kudos
chall_FTNT
Staff
Staff
In response to ergotherego

Created on ‎03-06-2018 09:52 AM

This is likely because default mapping has somehow been enabled on an interface but no value assigned.  

 

By default, all interface are mapped with per-device mapping & default mapping is disabled.

 

Solution is to disable default-mapping (or assign a value).  You can disable it manually or a script can be used to accomplish this.

 

config dynamic interface edit X set default-mapping disable

Chris Hall
Fortinet Technical Support
3882
0 Kudos
tuxerl
New Contributor

Created on ‎03-07-2018 03:02 AM

Hi,

 

I had exactly the same issue.

 

Reason:  In "Policy Objects" -> "Interfaces" there was an "Interface" as well as a "Zone" defined, which both mapped to the same physical Interface through their Default Mapping.

 

Removed the "Zone" and upgrade went fine.

 

best regards,

Tuxerl.

 

 

 

3882
0 Kudos
tuxerl
New Contributor
In response to tuxerl

Created on ‎03-10-2018 11:24 PM

Support just confirmed this as a known bug 469958 which will be fixed in the next FMGT release 5.6.3

3882
0 Kudos
ujnetsec
New Contributor
In response to tuxerl

Created on ‎09-15-2018 05:18 AM

I am getting this error when i try to upgrade from 5.6 to 6.0 :

Fail(errno=131):datasrc invalid. object: firewall ssl-ssh-profile ssl-exempt address 26. detail: auth.gfx.ms. solution : data not exist

 

how can i resolve this?

3882
0 Kudos
Prab
New Contributor
In response to ujnetsec

Created on ‎09-16-2018 08:12 AM

ujnetsec wrote:

I am getting this error when i try to upgrade from 5.6 to 6.0 :

Fail(errno=131):datasrc invalid. object: firewall ssl-ssh-profile ssl-exempt address 26. detail: auth.gfx.ms. solution : data not exist

 

how can i resolve this?

It could be a bug.

Seems like that an address object is missing under the SSL exemption option in your SSL/SSH inspection profile.

Could you please check if the address object exists under the SSL Inspection profile?

 

 

You could try creating an object and adding it to the list there.

 

Thanks & regards,

Prab

Preview file
73 KB
3882
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.