Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
TomFortinet
New Contributor

Created on ‎04-18-2012 12:23 AM

Cannot delete VPN tunnel configuration

I cannot delete the PH1 of an existing tunnel configuration. All rules have been deleted. Routing also. When I try the command: XXX-XXXX(phase1-interface)#delete TUNNEL-NAME this is what I get: This phase1-interface is currently used command_cli_delete:3724 delete table entry TUNNEL-NAME unset oper error ret=-23 Command fail. Return code -23 Reboot the box would be a nightmare, anyone has a solution to this? Thanks!
21458
0 Kudos
4 REPLIES 4
ede_pfau
SuperUser
SuperUser

Created on ‎04-18-2012 02:36 AM

Hi, welcome to the forums. A phase1 in interface mode is an interface. You can attach several objects to an interface, including - addresses - VIPs - IP pools - a DHCP server - policies - routes - policy routing I' d get a backup of the config and search it with an editor for the phase1 name. Aside, does it really bug you to have a dangling phase1?
Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
6490
0 Kudos
TomFortinet
New Contributor
In response to ede_pfau

Created on ‎04-18-2012 02:59 AM

Hi Thanks for the hints I would not bother actually...but a customer is flogging me!! This is also why I am looking for a silver bullet. Every change I do has to be scheduled and approved and it would look very bad if I gave the impression to rummage in his configuration rather then make some aimed changes. Thanks!
6490
0 Kudos
rwpatterson
Valued Contributor III
In response to TomFortinet

Created on ‎04-18-2012 06:12 AM

ORIGINAL: ede_pfau Bob, there' s a diag command to check the dependency of an object, could you post it?
Take a look here: http://kb.fortinet.com/kb/microsites/microsite.do?cmd=displayKC&externalId=FD30620

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
6490
0 Kudos
TomFortinet
New Contributor

Created on ‎04-18-2012 07:05 AM

THAAANKS!!!!! That is the silver bullet!!!
6491
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.