Description
This article describes how it is possible to monitor Traffic shaping under FortiView before FortiOS v6.0, but FortiOS 6.2 and above requires adding a widget for traffic shaping.
Scope
FortiGate.
Solution
From GUI, go to Dashboard -> Settings and select 'Add Widget'.
Under 'FortiView', select 'FortiView Top N'.
Choose from Drop down 'Traffic Shaping'.
From the v7.0 and above version, the FortiView Top N option is not available. Use the FortiView Traffic Shaping as below:
Use the 'Resize' option to adjust the size of the widget to properly see all columns.
It is also possible to check from CLI.
It is also possible to check from CLI.
diagnose firewall shaper traffic-shaper stats <----- To see traffic shaper statistics (combined).
diagnose firewall shaper traffic-shaper list <----- To see the statistics of all traffic shapers.
diagnose firewall shaper traffic-shaper list <----- To see the statistics of all traffic shapers.
To check if FortiGate traffic shaping is dropping traffic, Run the below commands.
diagnose firewall shaper traffic-shaper stats
memory allocated 0 packet dropped: 0
diagnose firewall shaper traffic-shaper list
shapers 5 ipv4 0 ipv6 0 drops 0 dropped bytes 0
The output display will show if the shaper is dropping traffic.
Note: The GUI widget for traffic shaping may not reflect some traffic for the following reasons:
- If that traffic is offloaded to the NPU on the firewall.
- If the shaper used is a per-ip shaper as opposed to a shared shaper.
