We have a FortiGate with multiple VDOMs (root, global, VDOM1, VDOM2) and would like to convert it back to no VDOM mode with configurations from VDOM1 that is having production traffic. Is this action possible by removing all configurations in VDOM2 and setting it back to no VDOM mode?
If it's possible, what are the commands/actions that needs to be done for this?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
When converting from no VDOM to VDOM mode you lose nearly all configuration (policies etc. disappear). I guess its the same when you do it vice versa.
Hi @security22,
You can move all the references to root VDOM and then delete those VDOMs. After that, you can disable multi-vdom and this will not affect root VDOM.
Hi there, thanks for the input.
I understand that when moving interfaces back to root VDOM, all references must be deleted. Correct me if I'm wrong, this includes configurations under the Policies & Object?
Are there any method to move these configurations to root VDOM without deleting the configurations? Or do I need to manually configure all these rules from scratch?
As one of the possible method I'd probably do that:
In case you have a spare FGT then you will have all the time to work on it.
Or if you have HA config then you can spit your cluster so you can have all the time to work on the second node.
Hi there, thanks for the input. We'll test this out in a lab environment and update any progress.
There no specific command to move the config from one vdom to another, but you must study the case, prepare the plan then manually move the config to target vdom.
Take a full backup of your current confiig, so in case the migration fails you'll ba able to rollback easily and quickly.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1641 | |
1069 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.