FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
gmanea
Staff
Staff
Article Id 196193
Description
This article explains the difference between 'one-armed sniffer' and 'packet sniffer'.
Solution
'One-arm sniffer' or 'One-armed sniffer' defines an inspection mode that is uses a FortiGate appliance to alert upon threats (working in IDS mode).

This mode is described in detail in this document:

'Sniffer' or 'Packet sniffer' is a term derived from the CLI command that is used to capture the packets that pass over the FortiGate.
A more accurate description is a 'packet capture'.

A similar operation can be performed from GUI, with less filters available.

Related Articles

Technical Tip: How to Configure One-Armed IDS/IPS Configuration

Troubleshooting Tool: Using the FortiOS built-in packet sniffer

Troubleshooting Tip: Packet Capture on FortiOS GUI

Contributors