Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
jasonhong
Staff
Staff

Created on ‎12-03-2024 11:21 PM

Article Id 362207

Technical Tip: How to troubleshoot when FortiManager tries to unset fwpolicy-implicit-log

Description

This article describes how to troubleshoot when FortiManager tries to unset fwpolicy-implicit-log.
Scope FortiManager.
Solution
  1. When performing a policy package installation, the user may come across the scenario where FortiManager is trying to unset fwpolicy-implicit-log within the installation preview although the fwpolicy-implicit-log is already set to enabled in the device database.

 

config log setting

    unset fwpolicy-implicit-log enable

end

 

devdb.png

 

  1. The user can verify the implicit log configuration of the firewall policy within the policy package. If the implicit log is set to 'Disable' or 'No Log' within the firewall policy, FortiManager will try to disable the implicit log setting during the policy package installation.
  2. To ensure FortiManager does not disable the implicit log setting during policy package installation, ensure 'Log IPv4/6 Violation Traffic' is enabled in the firewall policy within the policy package.

 

implicitlog.png
Labels:
82
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.