I’m trying to take down a VPN tunnel but when I tell it to “Bring Down”, it comes right back up. How do I get it to stop coming back up automatically?
You’ll have an interface on the device for that particular VPN. You just need to admin down that interface and it will take down the VPN.
You can simply manually disable/shutdown a VPN tunnel through CLI. Doing it from the GUI indeed just automatically brings it back up if it can.
config system interface
edit <tunnel name>
set status down.
next -- without this it won't actually take the config
end
Presumably if you don’t want it to come up then just change the peer IP to something else. Otherwise as long as there’s traffic it’s going to keep trying to bring it up.
Another way is to disable the policies and down it in the vpn monitor
Thanks! I found the interface.
Our network engineer is on vacation (for the next 3 weeks!) so I’m bumbling around trying to fill his shoes with my limited networking experience and my one FortiNet presentation.