Hi guys, Need help in disabling tunnel interface, i want to remove IPsec tunnel but since tunnel interface is enabled it is not getting removed.
When i press disable button in tunnel interface, error appears as below
"Entry not found in data source
Attribute 'interface value' checking fail
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello @Sa_Nour ,
If you remove tunnel configuration from vpn menu, the tunnel interface is removed automatically. You don't need to disable the tunnel interface to remove tunnel configuration.
If you can't remove tunnel configuration, firstly you should remove references to tunnel configuration.
Thanks @ozkanaltas
i already removed all references, still not getting disabled and there is an error i mentioned
Created on 12-13-2023 11:06 PM Edited on 12-13-2023 11:08 PM
@Sa_Nour ,
Did you change IPsec or IPsec interface name before?
Also, I mentioned before. If you want to delete the ipsec configuration you don't need to disable ipsec interface. You can click delete button on the vpn page as like shown the screen shot. This button remove automatically ipsec interface.
Hi @Sa_Nour,
Did you try with CLI instead?
Regards,
Minh
@Sa_Nour, You can try to delete it using the commands below:
#config vpn ipsec phase1-interface
#delete <name>
#end
Regards
Verender
It might have become a zombie. Try rebooting the unit.
Toshi
hi @Sa_Nour , I think you still have phase2 configuration, as if rebooting firewall not fix your issue then please try to confirm the phase 2 configuration is still there or not.
Please try to refer the article and check if you can fin any reference through CLI: https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-Check-Referenced-Objects/ta-p/19481...
In addition, you can do
show full | grep "tunnel-name"
Best Regards,
Maulish
Hi @Sa_Nour , you can use CLI to see got anything reference to that IPSEC tunnel or not.
Below is the commands:
show full | grep "tunnel-name" f
So it will show anything related to that tunnel-name then can use CLI to delete it.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1647 | |
1071 | |
751 | |
443 | |
214 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.