Disabling a policy on Fortigate 4401F but existing traffic continues

Forum|Forum|1 year ago
November 7, 2024
1 reply
2375 views

Is there a config parameter that I'm issuing that will shut down an existing traffic flow when a firewall policy is disabled? Disabling the policy stops any new connections but doesn't shut down traffic for an existing session which is what I'm trying to do.

Thanks.

FortiGate

AEK

SuperUser

You need to kill the session.

AEK

Baba_YagaAuthor

New Member

kill all of the sessions manually? due to the nature of the environment these are in i will have many sessions.up that all need to be killed immediately upon disabling the firewall rule. seems like a missing feature to not have the ability to match state of existing sessions with a rule state change.

AEK

SuperUser

It seems there is a solution with firewall-session-dirty.

Check this tech tip.

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Information-about-firewall-session-dirty/ta-p/195802

Hope it helps.

AEK

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded