Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Homan
New Contributor II

Created on ‎11-07-2023 02:32 AM

Customised internet service in fortimanager.

Hi,

How can i create a customized internet service in fortimanager?
I create a custom internet service and then i used the object in my police rule.
but i can't install the new config.
I get a message that "1 device(s) configuration is out of synchronization".

 

Kind regards,

Homan

Labels:
1863
0 Kudos
6 REPLIES 6
xshkurti
Staff
Staff

Created on ‎11-07-2023 04:35 AM

@Homan 
After you create custom internet service and before installing policy rule, try to execute update so fortigate can get this new internet-service.
After that try to install config. You are seeing this message because fortigate does not have that newly created internet-service in its database.

 

Regards,

1841
Homan
New Contributor II
In response to xshkurti

Created on ‎11-07-2023 04:58 AM Edited on ‎11-07-2023 04:59 AM

@xshkurti,

Thanks for the replay.

I tried it but after the update nothing is updated.
The new object is not visible in internet service database on fortigate.

Kind regards,

Homan

1837
0 Kudos
jasonhong
Staff
Staff
In response to Homan

Created on ‎11-09-2023 04:21 PM

You have to ensure the internet service object is in used/referenced in any firewall policy prior to installing the policy package.

 

You may try to manually retrieve the device config to ensure the config status is synchronized.

https://community.fortinet.com/t5/FortiManager/Technical-Tip-FortiGate-is-Out-of-sync-on-Device-Mana...

 

Then, make changes to the firewall policy to add the internet service object in any working firewall policy and proceed to install the policy package. You should be able to view the changes within the installation preview as you go through the Install Wizard.

1793
Homan
New Contributor II
In response to jasonhong

Created on ‎11-10-2023 03:55 AM

@jasonhong,
Thank you for your reply.
That is the problem. If i use the custom internet service in a policy , I can't push the config to fortigate.
I get a error message and than instal job faild.

If i create just a costunm internet service I can instal the config but i don't see any new object in internet service database.


kind regards.

1774
0 Kudos
cosan22
New Contributor

Created on ‎11-10-2023 06:28 AM

Hi, did you have any existing policy using internet service database ?

I see here and didn't have in the firewall objects tab, but if you create a new rule for example you have a box so you can turn on, this box is called internet service.

And inside the rule you can see the objects, but only inside the rule, not in the firewall object tab.

10.0.0.0.1 192.168.1.254
10.0.0.0.1 192.168.1.254
1769
0 Kudos
Homan
New Contributor II
In response to cosan22

Created on ‎11-21-2023 04:03 AM

Hi cosan22,

I have firewall rules with internet service object, but they are default objects.

I am running into custom internet service objects.

 

Kind regards,

Homan

1689
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.