Description
This article provides an explanation of policy-4294967295 under FortiView.
Scope
FortiView v5.4+.
Solution
A policy with the name 4294967295 may be seen under FortiView -> Policies.
Policy-4294967295 refers to a local policy. Local in policies are the policies where the traffic terminates on the FortiGate itself, whereas firewall policies refer to traffic destined to networks behind the FortiGate.
From v5.4 and above, the local policy ID has changed from policy 0 to policy-4294967295 for the incoming request. Any traffic terminating at the FortiGate will be handled by the new policy ID. The policy 0 ID is still there, but only shown when traffic is initiated by the FortiGate, such as DNS requests.
The default local-in policy does not appear in the configuration. To see them run the following commands:
Policy-4294967295 refers to a local policy. Local in policies are the policies where the traffic terminates on the FortiGate itself, whereas firewall policies refer to traffic destined to networks behind the FortiGate.
From v5.4 and above, the local policy ID has changed from policy 0 to policy-4294967295 for the incoming request. Any traffic terminating at the FortiGate will be handled by the new policy ID. The policy 0 ID is still there, but only shown when traffic is initiated by the FortiGate, such as DNS requests.
The default local-in policy does not appear in the configuration. To see them run the following commands:
config firewall local-in-policy
show
The policy-4294967295 will be shown in the debug flow also if the security mode is enabled under the interface configuration, and there are exempt sources/destinations:
