Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Matt_L
Staff
Staff

Created on ‎05-01-2025 08:21 AM Edited on ‎08-29-2025 04:10 AM By Moderator

Article Id 389582

Troubleshooting Tip: How to utilize the FortiGate 'diagnose debug application' command for troubleshooting various FortiGate processes/daemons

Description This article shows how to utilize the FortiGate 'diagnose debug application' command to troubleshoot issues with FortiGate processes/daemons.
Scope FortiOS v7.4.
Solution

To see the complete list of processes/daemons that are available to be run with the 'diagnose debug application' command, use the following command:

 

diagnose debug application ?

 

Below is a list of the available FortiGate processes/daemons that are displayed when running the above command, as well as their respective descriptions:

 

Galileo-kvm52 # diagnose debug application ?
smtp ....................................SMTP proxy.
pop3 ....................................POP3 proxy.
imap ....................................IMAP proxy.
nntp .....................................NNTP proxy.
proxy ...................................Proxy.
radvd ...................................Router adv daemon.
miglogd ................................Log daemon.
kmiglogd ..............................Kernel Log daemon.
forticldd ...............................FortiCloud daemon.
alertmail ..............................Alert mail daemon.
ppp .....................................PPP daemon.
l2tp .....................................L2TP daemon.
pptp ....................................PPTP daemon.
pptpc ...................................PPTP client.
authd ...................................Auth daemon.
foauthd ................................FortiguardOverride auth daemon.
fcnacd ..................................FortiClient NAC daemon.
fcld ......................................Fclicense daemon.
fssod ....................................FSSO daemon.
clearpass ..............................ClearPass daemon.
dhcps ...................................DHCP server.
dhcp6s .................................DHCPv6 server.
update .................................Update daemon.
vpd ......................................VPN policy daemon.
fnbamd .................................FortiGate non-blocking auth daemon.
eap_proxy .............................EAP proxy daemon.
ipsmonitor .............................IPS monitor.
ipsengine ...............................IPS sensor.
urlfilter ..................................Urlfilter daemon.
wf_monitor ............................WF monitor, parent of urlfilter daemon.
ddnscd DDNS .........................client daemon.
dhcprelay DHCP ......................relay daemon.
dhcp6r ...................................DHCPv6 relay.
snmpd ...................................SNMP daemon.
chassis ..................................Chassis daemon.
wpad .....................................Port access entity daemon.
wpad-crash-hexdump ..............Dump wpad crash in hexedecimal format.
wpa-show-keys ......................Dump keys in wpad or wpas log.
wpa-timestamp ......................Dump timestamp in wpad or wpas log.
wifi .......................................WiFi setting.
dnp .......................................DNP proxy daemon.
icond .....................................Industrial Connectivity daemon.
dnsproxy ................................DNS proxy module.
sflowd ....................................sFlow protocol module.
hatalk ....................................HA protocol module.
hasync ...................................HA synchronization module.
harelay ..................................HA relay module.
hamonitord .............................HA monitor module.
quarantine ..............................Quarantine daemon.
dhcpc .....................................DHCP client module.
zebos-launcher ........................ZebOS launcher daemon.
zebos .....................................ZebOS
radiusd ...................................RADIUS daemon.
sshd .......................................Sshd daemon.
sslvpn .....................................SSL-VPN proxy daemon
sessionsync .............................Session sync daemon.
ipldbd .....................................Ipldbd daemon.
crl-update ...............................CRL update in forticron daemon.
cert-update .............................Certificate update in forticron daemon.
alarmd ....................................Alarmd daemon.
forticron ..................................Forticron daemon.
uploadd ...................................Upload daemon.
smbcd .....................................SMB client daemon.
samld ......................................SAML SSO daemon.
acd ..........................................Aggregate Controller
alicloud-sdn ..............................AliCloud SDN controller
alicloud-ha ...............................AliCloud HA controller
sip ..........................................SIP ALG.
sccp ........................................SCCP ALG.
ike ..........................................IKE daemon.
fgfmd ......................................FortiGate/FortiManager communication daemon.
wccpd ......................................WCCP daemon.
waocs ......................................WAN acceleration object cache storage.
wabcs ......................................WAN acceleration byte cache storage.
garpd .......................................VIP gratuitous ARP daemon.
scep .........................................SCEP
ipsufd .......................................IPS URL filter resolver daemon.
cw_acd .....................................Capwap AC daemon.
cw_acd_helper ...........................Capwap AC helper daemon.
cw_acd_wpad ............................CAPWAP AC and WPA daemon (wpad).
cw_acd_wlev .............................CAPWAP AC daemon wireless event notification.
fortilinkd ...................................fortilink daemon
flcfgd .......................................fortilink configuration daemon
flpold .......................................FortiLink policy daemon.
fltund .......................................FortiLink tunnel daemon.
syslogd .....................................syslogd daemon.
locallogd ...................................locallogd daemon.
fgtlogd .....................................fgtlogd daemon.
reportd ....................................report daemon
vrrpd .......................................VRRP daemon.
fgd_alert ..................................FortiGuard alert message.
ntpd ........................................NTPd daemon.
fsd ..........................................Forti-start daemon.
dlpfingerprint ............................DLP fingerprint daemon.
nodejs .....................................Node.js daemon.
httpsd .....................................HTTPS daemon.
spareblock ...............................Set debug spare block count.
lldptx ......................................Link Layer Discovery Protocol (LLDP) Transmitter
tvc ..........................................SSL-VPN client
dhcp6c ....................................DHCPv6 client.
server-probe ............................Server probe daemon.
link-monitor ..............................Link monitor daemon.
link-monitor-passive ...................Link monitor daemon.
pppoed .....................................PPPoE client Daemon.
ovrd .........................................Override daemon.
iotd ..........................................IoT device info daemon.
extenderd .................................Extender Wan daemon.
oaas_agent ...............................OaaS agent daemon.
awsd .........................................Amazon Web Services (AWS) daemon.
netxd ........................................NetX REST API daemon.
cloudinitd ...................................cloudinitd daemon.
gcpd .........................................Google Cloud Platform daemon.
azd ...........................................Microsoft Azure daemon.
azd-ha ......................................Microsoft Azure daemon.
ocid ..........................................Oracle Cloud Infrastructure (OCI) daemon
openstackd ................................OpenStack SDN connector daemon.
kubed .......................................Kubernetes daemon.
vmwd .......................................VMware vSphere daemon
init ...........................................System init process.
mrd ..........................................Mobile router daemon.
radius-das .................................RADIUS DAS daemon.
csfd ..........................................Security Fabric daemon.
fsvrd .........................................FortiService daemon.
sdwan .......................................SD-WAN daemon.
route-tag ...................................route-tag daemon.
ftm-push ...................................FTM-Push daemon.
npd ..........................................NP7 daemon.
cmp .........................................CMPv2.
sdncd .......................................SDN Connector daemon.
ptpd .........................................Precision Time Protocol daemon.
autod ........................................Automation daemon.
bfdd ..........................................BFD daemon.
evpnd ........................................EVPN daemon.
fsso_ldap ...................................FSSO LDAP daemon.
sepmd .......................................Symantec EPM daemon.
acid ................................Cisco Application Centric Infrastructure (Direct Connection) daemon
ipamd ........................................IP Address Management daemon.
ibmd ..........................................IBM Cloud Infrastructure daemon.
vned ..........................................Virtual network enabler daemon.
sfupgraded ..................................Security Fabric Upgrade daemon.
ikecrypt ......................................Multi-process IKE crypto daemon.
fds_notify ....................................Update notification daemon.
ntnxd Nutanix ..............................Prism Central daemon.
sapd SAP .....................................Control daemon.
speedtest ....................................Speed test execution daemon.
speedtestd ...................................Speed test server daemon.
ipamsd ........................................IPAM server daemon.
eap_supp .....................................EAP supplicant daemon.
lpmd ...........................................LPM daemon.
pcpd ............................................PCP server daemon.
kmipd ..........................................KMIP daemon
cloudapid .....................................Cloud service communication daemon.
est ..............................................Enrollment over Secure Transport

 

To debug any of the above-listed processes/daemons, use the following commands:

 

diagnose debug reset

diagnose debug application <process/daemon name> -1

diagnose debug console timestamp enable

diagnose debug enable

 

Note: By default, the debug will run for a maximum of 30 minutes, but this can be modified by including the following command in the command list above:

 

diagnose debug duration xxxx    <-- The duration range is from 1 minute to a max of 99999 minutes.

 

Once the output has been gathered, use the following commands to terminate the debug:

 

diagnose debug disable

diagnose debug reset

 

Note: When disabling the debug, some outputs produce more output than others, and at a faster rate, so a shortened command of 'di de di' instead of 'diagnose debug disable' can be leveraged to stop the debug output more quickly to reduce output file size.
1108
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.