Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
parteeksharma
Staff
Staff

Created on ‎07-10-2023 07:38 AM Edited on ‎07-10-2023 07:39 AM By Moderator

Article Id 263214

Technical Tip: System events shows log message 'User daemon_admin added IPv4 firewall local in policy 1 from cmdbsvr'

Description

 

This article describes the case when system events show the log message 'User daemon_admin added IPv4 firewall local in policy 1 from cmdbsvr'.

 

Scope

 

FortiGate 7.2.x.

 

Solution

 

When FortiGate has a firewall local-in-policy, after the FortiGate reboot, there is an event log created as below:

 

date=2023-06-23 time=18:08:52 eventtime=1687523865000462096 tz="+0530" logid="0100032172" type="event" subtype="system" level="notice" vd="root" logdesc="IPv4 firewall local in policy added" user="daemon_admin" ui="cmdbsvr" seq="1" dintf="dmz" saddr="Dialup_range" daddr="all" act="accept" status="enable" iptype="ipv4" msg="User daemon_admin added IPv4 firewall local in policy 1 from cmdbsvr"

 

cmdb_local_in.PNG

 

This log message in System event logs is an expected behavior and is generated when rebooting the firewall system processes which will load the config from CMDB to memory, and add the local-in-policy.

1423
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.