[rancid] RANCiD with Fortinet FortiGate firewalls and cfg-save revert
Gary T. Giesen
ggiesen at giesen.me
Thu Apr 17 18:55:12 UTC 2025
> On 2025-03-18 6:54 PM EDT heasley <heas at shrubbery.net> wrote:
> > Has anyone dealt with this issue with RANCiD and cfg-save revert on Fortinet FortiGate firewalls? Is there any solution other than to just disable cfg-save revert (by setting it to automatic or manual).
>
> No one has mentioned this behavior before, but I do not know how commonly
> this 'cfg-save revert' knob is configured. If it is common, maybe you are
> using a feature that causes this reboot or have encountered a bug.
'cfg-save revert' causes a reboot by design (see https://community.fortinet.com/t5/FortiGate/Technical-Tip-Using-the-save-option-set-cfg-save-revert-to/ta-p/191106), I was just curious if anyone had a workaround for disabling paging that didn't trigger a configuration change.
We've changed them to 'cfg-save manual' which seems to work (although we're always showing configuration changes), although we've lost the ability to auto-revert if we get locked out of the device.
By default the devices come with 'cfg-save automatic'.
Cheers,
Gary T. Giesen
More information about the Rancid-discuss
mailing list