Created on
09-27-2023
01:53 AM
Edited on
09-28-2023
07:41 AM
By
Jean-Philippe_P
Description | This article describes the case when finding the SD-WAN rule and member that is used in a particular session on FortiGate. |
Scope | FortiGate. |
Solution |
To find the SD-WAN rule that is used in a particular session, it is better to apply a filter to match the session in the session list.
In this example, the filter used is by Source IP 192.168.7.2. Enter the following commands to find the matching session:
The output will display all the sessions with source IP 192.168.7.2. In the current example, the below output appears:
session info: proto=6 proto_state=01 duration=61 expire=3538 timeout=3600 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
The useful information in the output for the SD-WAN rule and member is sdwan_mbr_seq=4 sdwan_service_id=3.
It means that SD-WAN member #4 and SD-WAN service ID #3 were used for traffic.
config system sdwan config service
To find the member, type this command: config sys sdwan
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.