FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description This article provides a sample of firewall policy lookups.
Solution Policy lookups.
- Firewall policy lookup is based on the Source_interfaces/Protocol/Source_Address/Destination_Address that matches the source-port and dst-port of the protocol. - Use this tool to find out which policy matches specific traffic from a number of policies. After completing the lookup, the matching firewall policy is highlighted on the policy list page.
The Policy Lookup tool has the following requirements:
- Transparent. - When executing the policy lookup, you need to confirm whether the relevant route required for the policy work already exists.
This example uses the TCP protocol to show how policy lookup works:
- In Policy & Objects policy list page, select 'Policy Lookup' and enter the traffic parameters.
- Select 'Search' to display the policy lookup results.