Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Tom_Siegenthaler
New Contributor

Created on ‎01-31-2012 11:43 AM

Cannot create tunnel

I am trying to create a tunnel for an IPSec connection. Currently using fortigate 200B running V4 MR3 patch 2 (about to upgrade to patch 4). I already have a number oftunnels, the configs look like this: config global config system interface edit " 1OMainSt_IPSec" set vdom " MCHInt" set type tunnel set interface " DMZ-1Office" next but when I try to make another I get: PN-FWHA2 (interface) # edit " 1Otest_IPSec" new entry ' 1Otest_IPSec' added PN-FWHA2 (1Otest_IPSec) # set vdom " MCHInt" PN-FWHA2 (1Otest_IPSec) # set type tunnel command parse error before ' tunnel' Command fail. Return code -61 I also cannot set the interface: PN-FWHA2 (1Otest_IPSec) # set interface " DMZ-1Office" entry not found in datasource value parse error before ' DMZ-1Office' Command fail. Return code -3 From the GUI the tunnel option does not even appear, neither does the correct interface (which is a vlan). Existing tunnels work fine and are configured the same way. Any idea what is happening? I' m desperate for some help here! Tom
4129
0 Kudos
2 REPLIES 2
abelio
SuperUser
SuperUser

Created on ‎01-31-2012 12:25 PM

Hello Tom and welcome,
ORIGINAL: Tom Siegenthaler I am trying to create a tunnel for an IPSec connection. ..... but when I try to make another I get: PN-FWHA2 (interface) # edit " 1Otest_IPSec" new entry ' 1Otest_IPSec' added PN-FWHA2 (1Otest_IPSec) # set vdom " MCHInt" PN-FWHA2 (1Otest_IPSec) # set type tunnel command parse error before ' tunnel' Command fail. Return code -61 I also cannot set the interface: PN-FWHA2 (1Otest_IPSec) # set interface " DMZ-1Office" entry not found in datasource value parse error before ' DMZ-1Office' Command fail. Return code -3
you' re using a creative way to configure ipsec vpn interface mode ... you cannot create those interfaces by hand, just follow the easy and documented way to configure such tunnels. this pdf is your friend to begin with: http://docs.fortinet.com/fgt/handbook/40mr3/fortigate-ipsec-40-mr3.pdf regards

regards




/ Abel

regards / Abel
2579
0 Kudos
Tom_Siegenthaler
New Contributor

Created on ‎01-31-2012 01:10 PM

I think I found the real problem. We upgraded from V3 to V4 and these are the V3 command structures. I think they are not fully compatible under V4. Thanks for the manual! Tom
2579
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.