Hi,
How can i create a customized internet service in fortimanager?
I create a custom internet service and then i used the object in my police rule.
but i can't install the new config.
I get a message that "1 device(s) configuration is out of synchronization".
Kind regards,
Homan
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
@Homan
After you create custom internet service and before installing policy rule, try to execute update so fortigate can get this new internet-service.
After that try to install config. You are seeing this message because fortigate does not have that newly created internet-service in its database.
Regards,
Created on 11-07-2023 04:58 AM Edited on 11-07-2023 04:59 AM
Thanks for the replay.
I tried it but after the update nothing is updated.
The new object is not visible in internet service database on fortigate.
Kind regards,
Homan
You have to ensure the internet service object is in used/referenced in any firewall policy prior to installing the policy package.
You may try to manually retrieve the device config to ensure the config status is synchronized.
Then, make changes to the firewall policy to add the internet service object in any working firewall policy and proceed to install the policy package. You should be able to view the changes within the installation preview as you go through the Install Wizard.
@jasonhong,
Thank you for your reply.
That is the problem. If i use the custom internet service in a policy , I can't push the config to fortigate.
I get a error message and than instal job faild.
If i create just a costunm internet service I can instal the config but i don't see any new object in internet service database.
kind regards.
Hi, did you have any existing policy using internet service database ?
I see here and didn't have in the firewall objects tab, but if you create a new rule for example you have a box so you can turn on, this box is called internet service.
And inside the rule you can see the objects, but only inside the rule, not in the firewall object tab.
Hi cosan22,
I have firewall rules with internet service object, but they are default objects.
I am running into custom internet service objects.
Kind regards,
Homan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1548 | |
1032 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.