Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mpeddalla
Staff
Staff

Created on ‎08-30-2023 08:57 PM Edited on ‎08-31-2023 04:41 AM

Article Id 271202

Technical Tip: How to stop and restart the IPS engine, verify status

Description This article describes how to stop and restart the IPS engine.
Scope FortiGate.
Solution

There are scenarios where it is necessary to disable/stop the IPS engine to optimize high CPU or memory.

 

  • To verify the status of the IPS engine:

 

diagnose test application ipsmonitor 1

 

chrome_zGkDIbYTkX.png

 

It is possible to see some status of the IPS engine.

 

  • In the Below screenshot, it is possible to see the information to start and stop the IPS engine:

 

chrome_W3EoB6LvbD.png

 

  • To stop the IPS engine, run this CLI command:

 

diagnose test application ipsmonitor 98

 

  • Verify if the IPSengine is stopped or not

 

diagnose sys top 1 20   <----- Ctrl+c to stop debug (by checking whether the daemon is running or not).

diagnose test application ipsmonitor 1  

 

  • In the below screenshot, the information status is missing which was visible in image 1.


chrome_KFYMsrn6CL.png

 

  • To start the IPS engine service back, run the below CLI command:

diagnose test application ipsmonitor 97

 

  • Verify if the IPS engine works or not by running the below CLI command:

 

diagnose test application ipsmonitor 1


chrome_nlHdJSnNvf.png
9397
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.