Sniffer find packets but doesn't show

Hello,

I use commande : diagnose sniffer packet any 'port 541' 6 0 l

i have :
42 packets received by filter
0 packets dropped by kernel

but the command never show packets, i don't understand why ?

I tried in CLI web and ssh
thnaks

Staff

Hi mulbzh,

For testing purposes, try disabling auto-ASIC offload in the firewall policy and try to take the sniffer packet once again and check the behavior.

config firewall policy
edit <policy-ID>
set auto-asic-offload disable
next
end

Additionally, you can try capturing the logs through the GUI to verify if any traffic is being detected.

Regards,
Aman

New Member

Looks like the sniffer is capturing packets, but the issue might be with the display settings or the filter configuration. Make sure the right filters are set, or try adjusting the capture settings. You can also check out this for more troubleshooting tips https://community.fortinet.com/t5/FortiGate/property inspection/Troubleshooting-Tip-Packet-Capture-on-FortiOS-GUI/ta-p/194444

Sign up