Hello,
I have to create dynamic mappings for 500+ interfaces in FMG and I'm looking for the CLI to do that, because it will take me 3 months to do it in the GUI.
I already have the dynamic mappings from the old FMG in CLI, which is:
diag dvm device dynobj FG-1
=== VDOM root ===
config dynamic interface
edit vlan1902
config dynamic_mapping
edit "FG-1"-"root"
set local-intf "vlan1902"
next
end
next
end
...
But, I don’t know how to push this CLI to the target FMG. The command “config dynamic interface” simply does not work in the FMG.
Do you know the exact CLI to push the dynamic mappings for all normalized interfaces?
Thanks
Andreas
Normalized interfaces, are locally relevant on FMG not on FGT.
As you map a interface from a device to a dynamic interface and use it in a policy, then push that policy on the FGT, you will see locally on it that it uses the real interface and not the dynamic one.
So, in your case, you just need to create the normalized interface and map it for every device.
I'm afraid you didn't understand my question. I want to provision an FMG with 500 dynamic mappings. Can I do it in CLI?
I am also looking for the same information. So far, I have not been able to find anything concrete. As soon as I find something, I will share.
if the 500 dynamic interfaces are already created on the Fortigate, when you import the policies of that fortigate, the mapping will be created automatically
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.