Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nnair
Staff
Staff

Created on ‎03-30-2023 12:01 AM Edited on ‎03-27-2024 10:17 PM By Community Manager

Article Id 250799

Technical Tip: How to find policy ID

Description

 

This article explains how to find the IPv4 policy id for troubleshooting.

 

Scope

 

FortiGate.

 

Solution

 

Navigate to Policy and Objects -> Firewall Policy. Select the gear icon and select 'ID' as shown below. A new column 'ID' will show up on the right which shows policy IDs for each policy. 

 

ID.png

 

It is also possible to see the policy ID indicated in each policy in the top right corner when editing it.

 

Refer to the image below:

 

Anthony_E_1-1695889011737.png

 

 

Policy ID can be seen from the CLI also.

 

Open the CLI console. Type below command:

 

show firewall policy

 

Anthony_E_2-1695889011735.png

 

 

The above snapshot shows that the policy ID is '3' for the "vpn_Test_remote_0" policy.

 

It is also possible to use the below command in the CLI to find the matching policy:


diagnose firewall iprope lookup <src ip> <src port> <dst ip> <dst port> <protocol> <Incoming_interface>

 

Related video:

https://youtu.be/J5cnKZnCD34

5844
Submit Article Idea
Comments
rtichkule
Staff
Staff
‎08-26-2023 11:00 PM

Useful article.

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.