Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
suthomas1
New Contributor

unused interface

Good day all,

 

we have some interface & zone that are not in use.

What is the best method to delete these & also checking on if it affects anything else.

 

 

Suthomas
Suthomas
2 Solutions
lobstercreed
Valued Contributor

You can see what references there are to any given interface/zone in the GUI at Network -> Interfaces.  You may have to add the Ref column.

View solution in original post

Yurisk
Valued Contributor

Additionally, you can check on CLI where it is used, say interface name "port1":

 

# show | grep por1 -f

 

Yuri https://yurisk.info/  blog: All things Fortinet, no ads.

View solution in original post

Yuri https://yurisk.info/ blog: All things Fortinet, no ads.
6 REPLIES 6
lobstercreed
Valued Contributor

You can see what references there are to any given interface/zone in the GUI at Network -> Interfaces.  You may have to add the Ref column.

Yurisk
Valued Contributor

Additionally, you can check on CLI where it is used, say interface name "port1":

 

# show | grep por1 -f

 

Yuri https://yurisk.info/  blog: All things Fortinet, no ads.
Yuri https://yurisk.info/ blog: All things Fortinet, no ads.
Dave_Hall
Honored Contributor

I suggest to just disable any unused physical interfaces rather then deleting them.  You never know what may happen during the firmware upgrade process when expect interfaces are not found.

NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C

NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
rwpatterson
Valued Contributor III

Additionally, nothing can be deleted if there are any references to them. A safety thing which can be a pain in the you-know-where when you're under the gun and trying to get things done in a hurry.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
Dave_Hall
Honored Contributor

I suggest to just disable any unused physical interfaces rather then deleting them.  You never know what may happen during the firmware upgrade process when expect interfaces are not found.

NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C

NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
hidris

Hi,

I would suggest you remove any default references, shutdown then add those interfaces to virtual-switch maybe which will help you view interface tab with the active one's only.

NSE4, NSE5, NSE7 and NSE8 Certified

NSE4, NSE5, NSE7 and NSE8 Certified
Labels
Top Kudoed Authors