Created on 12-18-2008 02:20 PM Edited on 05-26-2022 11:58 AM
|Description||FortiGate units do not record traffic logs for sessions offloaded to FortiGate NP2 or NP4 processors.
All FortiGate units with NP2 processors, including:
|Steps or Commands||
FortiASIC NP2/NP4 network processors can improve network throughput by offloading processing of the following types of traffic:
To improve network performance, FortiGate units can be configured to offload this traffic to the NP2/NP4 network processors. This fast path processing leverages the additional hardware resources of the NP2/NP4 processors while reducing the amount of traffic processed by the FortiGate unit main processing resources.
Note: Traffic is only processed by NP2/NP4 processors after it is accepted by a firewall policy.
To optimize performance, NP2/NP4 processors do not include traffic logging capabilities. Because of this and because offloaded traffic bypasses FortiOS, no traffic logs are generated for traffic offloaded to NP2/NP4 processors.
FortiOS does not record or display statistics for this traffic. FortiOS will however record traffic and log messages (and count packets) for the TCP session establishment packets :
SYN / SYN ACK / ACK.
If you need to record traffic logs or other statistics for traffic being offloaded to NP2/NP4 processors you can disable offloading these types of sessions by routing the traffic to other interfaces.
You can also use the
See also : FortiGate Hardware Acceleration Technical Note and the additional information available in the related articles.