FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
caunon
Staff
Staff
Article Id 218088
Description

This article describes about the procedure to check OSPF sessions in FortiGate to investigate further.

OSPF (Open Shortest Path First).

Scope

FortiGate.

Solution

To check and investigate OSPF sessions in FortiGate, run the following CLI commands as below to investigate OSPF sessions further.


# diagnose sys session list | grep proto=89 -A 15

 

Example:

 

# diagnose sys session list | grep proto=89 -A 15


session info: proto=89 proto_state=00 duration=12995 expire=599 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=0/0
state=local may_dirty
statistic(bytes/packets/allow_err): org=94428/1378/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 7/0 rx speed(Bps/kbps): 0/0
orgin->sink: org pre->in, reply out->post dev=7->0/13->7 gwy=0.0.0.0/0.0.0.0
hook=pre dir=org act=noop 10.89.2.146:0->224.0.0.5:0(0.0.0.0:0)
hook=post dir=reply act=noop 224.0.0.5:0->10.89.2.146:0(0.0.0.0:0)
misc=0 policy_id=4294967295 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=000000b9 tos=00/00 app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000

--
session info: proto=89 proto_state=00 duration=12998 expire=591 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=255/255
state=local nds
statistic(bytes/packets/allow_err): org=95552/1376/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 6/0 rx speed(Bps/kbps): 0/0
orgin->sink: org out->post, reply pre->in dev=0->7/7->0 gwy=0.0.0.0/0.0.0.0
hook=out dir=org act=noop 10.89.3.36:0->224.0.0.5:0(0.0.0.0:0)
hook=in dir=reply act=noop 224.0.0.5:0->10.89.3.36:0(0.0.0.0:0)
misc=0 policy_id=0 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=0000009b tos=ff/ff app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000

--
session info: proto=89 proto_state=00 duration=12998 expire=590 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=255/255
state=local nds npu
statistic(bytes/packets/allow_err): org=96432/1383/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 6/0 rx speed(Bps/kbps): 0/0
orgin->sink: org out->post, reply pre->in dev=0->19/19->0 gwy=0.0.0.0/0.0.0.0
hook=out dir=org act=noop 136.136.136.24:0->224.0.0.5:0(0.0.0.0:0)
hook=in dir=reply act=noop 224.0.0.5:0->136.136.136.24:0(0.0.0.0:0)
misc=0 policy_id=0 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=0000009d tos=ff/ff app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000

--

 

Contributors