CLI, Sequence Grouping, and adding new policies

Forum|Forum|6 years ago
June 13, 2019
1 reply
26488 views

Hi. Running a FortiGate 800D running v6.0.4 build 0231.

Please can someone advise how I can create Sequence Groups via CLI, then add a new IPv4 policy to be located under that sequence group again via CLI.

Thanks

hubertzw

New Member

What do you mean by 'Sequence Groups'?

This is how you can move policy under specific policy ID:

config firewall policy move policy_ID [before|after] policy_ID

ede_pfau

SuperUser

There is no sequence numbering or grouping in CLI. Policies are uniquely numbered with an policy-ID. Only in the GUI, policies are grouped by source & dest interface, and sequentially re-numbered.

That's why many users discard the "sequence ID" column and add "policyID", as then you can find it in the CLI.

GeezertronicAuthor

New Member

In the GUI, you can create Sequence Groups and have different policies under each sequence group - they offer no usage value other than to group policies together based on usage. Can you not create these groups via the CLI and assign policies to be under them rather than do all of that via the GUI?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded