Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Abin_FTNT
Staff
Staff

Created on ‎10-10-2016 05:00 AM

Article Id 191820

Technical Note: How to bring down the shortcut VPN tunnel created by Auto-Discovery VPN (ADVPN)

Description
As of FortiOS 5.4, a dynamic tunneling mechanism (named Auto-Discovery VPN - ADVPNallows a traditional hub and spoke VPN’s spokes to establish dynamic, on-demand direct tunnels between each other so as to avoid routing through the topology’s hub device.

These dynamic tunnels are called shortcuts.  This article provides the CLI command to tear down ADVPN shortcuts.

Solution
VPN shortcut tunnels cannot be flushed via the GUI like normal IPsec VPN tunnels.
To tear down a shortcut, use the below CLI command:
diag vpn ike gateway flush name <shortcut_name>


Related Articles

Technical Tip: Fortinet Auto Discovery VPN (ADVPN)

Labels:
9947
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.