Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nnair
Staff
Staff

Created on ‎03-30-2023 12:01 AM Edited on ‎09-28-2023 01:18 AM By Community Manager

Article Id 250799

Technical Tip: How to find policy ID

Description

 

This article explains how to find the IPv4 policy id for troubleshooting.

 

Scope

 

FortiGate.

 

Solution

 

Navigate to firewall policy from Policy and Objects.

 

Anthony_E_0-1695889011649.png

 

 

After that, It will be possible to see the policy ID indicated on each policy in the top right corner.

 

Refer to the image below.

 

Anthony_E_1-1695889011737.png

 

 

Policy ID can be seen from the CLI also.

 

Open the CLI console. Type below command:

 

show firewall policy

 

Anthony_E_2-1695889011735.png

 

 

The above snapshot shows that the policy ID is '3' for the "vpn_Test_remote_0" policy.

 

It is also possible to use the below command in the CLI to find the matching policy:


diagnose firewall iprope lookup <src ip> <src port> <dst ip> <dst port> <protocol> <Incoming_interface>

 

Related video:

https://youtu.be/J5cnKZnCD34

3030
Submit Article Idea
Comments
rtichkule
Staff
Staff
‎08-26-2023 11:00 PM

Useful article.

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.