I see a strange behavior here on our FortiManager when re-installing a policy package to any of our FortiGates. Every time I perform this action, the DNS settings on the FortiGate are removed. An example, I add an address under Object Configurations and want to deploy that to a FortiGate. I select that FortiGate and choose "Re-install policy". In the following screen, I can see the two buttons for "Install Preview" and "Policy Package Diff". The "Policy Package Diff" shows what needs to be changed (the new address object). But when I select "Install Preview" I notice four CLI command I didn't set, nor understand how these end up in there:
config system dns
unset primary
unset secondary
end
Anyone ever seen this and perhaps knows how to fix this?
Kind regards,
Marcel
And all of a sudden I have found it. Turns out, in our provisioning template, the DNS settings were set but not filled in. So every time I deployed a package, the setting was overwritten.
Problem solved!
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.