FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nnair
Staff
Staff
Article Id 250799
Description

 

This article explains how to find the IPv4 policy id for troubleshooting.

 

Scope

 

FortiGate.

 

Solution

 

Navigate to firewall policy from Policy and Objects.

 

Anthony_E_0-1695889011649.png

 

 

After that, It will be possible to see the policy ID indicated on each policy in the top right corner.

 

Refer to the image below.

 

Anthony_E_1-1695889011737.png

 

 

Policy ID can be seen from the CLI also.

 

Open the CLI console. Type below command:

 

show firewall policy

 

Anthony_E_2-1695889011735.png

 

 

The above snapshot shows that the policy ID is '3' for the "vpn_Test_remote_0" policy.

 

It is also possible to use the below command in the CLI to find the matching policy:


diagnose firewall iprope lookup <src ip> <src port> <dst ip> <dst port> <protocol> <Incoming_interface>

 

Related video:

https://youtu.be/J5cnKZnCD34

Comments
rtichkule
Staff
Staff

Useful article.