This article describes how collect debug information to troubleshoot web management interface issues.
FortiGate 6.2.2+, 6.4.0+, 7.0.0+, 7.2.0+, Google Chrome web browser.
For troubleshooting issues related to the web management interface of FortiGate (GUI), debug level for the https daemon is useful, which can be retrieved with commands below.
# diagnose debug console timestamp enable
# diagnose debug application httpsd -1
# diagnose debug enable
However, a Google Chrome Extension can be leveraged to collect several other pieces of information at once, which may be extremely helpful for troubleshooting.
This Google Chrome extension is called 'FortiGate Support Tool' and it is publicly available on Google Chrome Web Store.
FortiGate Support Tool - Google Chrome Extension
It communicates with a FortiGate via the Chrome extension API and may collect the following during a capture:
1) A video recording.
2) FortiGate meta information.
3) Client and browser meta information.
4) HTTP network logs.
5 )Various daemon debug logs (cmdb, node, httpsd, csfd, miglogd, sslvpnd).
7) FortiGate memory and CPU usage over time.
8) Client memory and CPU usage over time.
Some daemons may only be available with FortiOS firmware 7.0 and above.
Creating a Capture
FortiGate Support Tool is currently available for Google Chrome browser and FortiGate running firmware version 6.2.2 and above.
To create a new capture, login to a FortiGate and locate the extension added previously at the top right section of the browser as below. The red icon indicates FortiGate is ready to begin capture.
The administrator profile must have read/write access to at least 'System' category.
Select the icon, and a dropdown will appear with information on the current FortiGate.
Select the button labeled 'New Capture'.
After selecting 'New Capture', a new window will be presented with a form with options to choose from, such as 'File Name', 'Device Configuration', and daemons to have to debug enabled.
After selecting 'Start Capture', the header within the FortiOS GUI will now display a red timer indicating the duration of the capture.
The maximum duration of capture is 10 minutes.
With the capture now running, the issue can be reproduced and data will be gathered based on options previously selected.
At any point in time, the capture can be stopped by selecting the red button from the above image. Once capture is ended, a zip file will be downloaded.
Viewing a Capture.
Once a capture has been created, it can be viewed at any time by selecting the 'View Capture' button in the FortiGate Support Tool extension dropdown.
The icon does not need to be read in order to view a capture.
A new tab will now open in the browser. Select the capture zip file or drag and drop the file into this page.
After selecting a capture file, a dashboard will be presented with information about the capture.
In the top left corner is a video of the capture, bottom left is a resource usage chart, and on the right-hand side is either general information or a log stream.
From the dropdown on the right-hand side, the default option is 'Capture Summary', but it contains the options presented in the image below.
The content of daemon logs will show logs up until the current video time elapsed.
Play or drag the video timeline in order to show more logs as the video progresses.
This allows for the easier association of a visual event with a particular log entry.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.