Dear People,
I hope somebody can help me.
I try to delete the fortilink interface.
If I use the checkbox
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Problem is, if you deactivate the NTP Server with CLI
config system ntp
unset server-mode
end
The ListenInterface will not deleted and you can not delte fortilink interface
Is there any way to unlink the fortilink from NTP Listen Interface over CLI?
What do you see under "config system ntp" now in CLI? I mean, you get in the 40F via CLI over SSH, or direct console.
Or, you ran the CLI script against Device DB and haven't pushed it to the 40F yet?
Toshi
hi kaplan.
from your screenshot, can you just switch the button "Enable NTP Server" so that it will be disabled from FortiManager? then push the config over to the FortiGate, wait until it is finished, then delete the fortilink from FortiManager and push the new changes again?
otherwise, you can as well just unset server-mode from FortiGate cli, delete fortinlink there and then retrieve the config back to FortiManager as of: https://community.fortinet.com/t5/FortiManager/Technical-Tip-FortiGate-is-Out-of-sync-on-Device-Mana...
He, at least we, don't want to disable NTP. But just want to disable server-mode.
I wouldn't try removing a hard-switch like fortilink from FMG. I regularly make those interface structure changes before registering any FGTs to FMG. Similar to elfaran's 2nd option.
By the way, don't forget to remove the DHCP server (by default, edit 2).
Toshi
Created on 03-13-2022 10:49 PM Edited on 03-13-2022 10:49 PM
my solution:
First Step:
config system dhcp server
purge
end
config system ntp
set server-mode enable
set interface "modem"
end
Second Step
config system ntp
unset server-mode
end
Last Step:
config system interface
delete "fortilink"
end
Thanx again Toshi, thats very nice to try to help,
thanks for sharing!
wasn't able to delete fortilink even after i did a factory reset.
it's weird i only encountered this problem in FG 201F but not with FG 401F. not sure why?
I still think you can eliminate the step2 by "set server-mode disable" in the step1. That's what I do through direct CLI to make 'a' port a normal port.
Dear Toshi,
i tested for you now
Did you use a CLI script and ran it against the device directly?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.