FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
adavila
Staff
Staff

Description

This article explains how to configure the debug in real time for web proxy and explicit proxy, specifying the destination website.

 

Solution

To enable web proxy real time debug, first configure the destination website into the configuration file issuing command:

 

# config web-proxy debug-url
    edit <entry-name>
      set url-pattern <pattern> (Pattern is the destination, e.g. www.fortinet.com)
      set status enable
      set exact enable
    next
  end

Now, run the debug commands:

# diagnose wad debug-url enable
# diagnose wad console-log enable
# diagnose debug enable

The traffic to the website destination will be displayed.

 

Or Method #2 can be used for full debugging:

 

# diagnose wad filter src <client IP>

# diagnose wad filter dst <Destination IP>  <-- If Destination IP is unknown then this command can be skipped

# diagnose wad debug enable category all

# diagnose wad debug enable level verbose

# diag debug console timestamp enable

# diag deb enable

 

P S: This will produce huge output depending on destination traffic. In the moment of debug process, there will be delay of forwarding packets.

Contributors