Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
kwcheng__FTNT
Staff
Staff

Created on ‎10-26-2021 10:27 PM Edited on ‎01-05-2026 09:36 AM By Community Manager

Article Id 196992

Technical Tip: How to show packet capture

Description

 

This article describes how to show 'Packet Capture' under Log & Report -> Sniffer Traffic.

 

Scope

 

FortiGate.

 

Solution

 

Stephen_G_0-1767634325571.png

 

Create a new packet capture filter under: Network -> Packet Capture and select 'New'.

 

Stephen_G_1-1767634393591.png

 

  1. Put the appropriate filter on the traffic to be captured and select 'Start'. 

 

Stephen_G_2-1767634429386.png
 
  1. (Optional) Login to FortiGate via SSH and execute the following command:
 
# config report setting
    append report-source sniffer-traffic
end
 
This command will allow the packet capture to be used when querying data from a FortiView widget. It is not required to save the capture.
See more details here:  Enabling FortiView from devices.

  1. Run the traffic on a client and wait the packet capture to complete and the log is saved on the FortiGate under Log & Report -> Sniffer Traffic.
 
Important notes:
Local disk is required in order to work, as it relies on the FortiView function.
5515
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2026 Fortinet, Inc. All Rights Reserved.