Cannot create Zone with same name as Physical port
I would like to create a zone called "dmz", my FG100D will not let me as it conflicts with a "duplicate" name dmz under physical ports. I changed the Switch mode to physical. Is this possible to rename the physical port to stop this Zone naming conflict.
100D # conf vdom
100D (vdom) # edit V1
100D (V1) # config system zone
100D (zone) # edit
name Zone name.
100D (zone) # edit dmz
the name "dmz" conflicts with a system interface of the same name
node_check_object fail! for name dmz
value parse error before 'dmz'
Command fail. Return code -553
100D (zone) #
100D # conf glo
100D (global) # conf sys int
100D (interface) # edit
dmz static 0.0.0.0 0.0.0.0 down disable physical
ha1 static 0.0.0.0 0.0.0.0 up disable physical
ha2 static 0.0.0.0 0.0.0.0 up disable physical
No I don't think it's possible to rename the physical ports. I use zones a lot in order to abstract the physical and logical connections- if a change to the physical connections on a device becomes necessary, i don't have to completely rework the ruleset.
What i do is name the different interface items with a suffix for what it is. For example, there's the physical interface DMZ as well as DMZ_VLAN and DMZ_ZONE. That is probably your best bet.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.