Is there a way to know the hits on specific ports from service groups ?

Forum|Forum|9 years ago
August 1, 2016
1 reply
2578 views

Hi,

I have multiple policies in my firewalls that use service groups (at least 15-20 tcp/udp ports). I want to know if there's a way beside logging all and wait to know the hits on each ports from a specific policy ? I know there's the hit count number that sums all hits on every single ports used in that group/policy but I want to know for each ports separately.

Thank you,

emnoc

New Member

If you have unique policy with just that one "service" you will get exact hits. I'm doing that with a business today with SQl since they are are over from 1433-1436, we have define custom services and a specific policy for that.

Now in the FAZ chartbuilder or FGT ( webGUI/CLI ) we can extract logs for traffic that matches just that one "service". It does create more fwpolicies but with logging and reports it's easier to see what's happening vrs a service-group approach.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded