Fortianalyzer 5.2.4 FortiView:
What are the list of values for the Action column? I see Accept and Close for example.
And what are the list of values for the Security Action column? I see Allow or it's blank.
And when you see something like the Action column has Close in it, and the Security Action column has Allow in it. What does this mean?
And I've searched the manuals for the values and I didn't find them.
Go to Solution.
You can refer to the following document for logs fields:
Action=close on traffic log mean traffic has been allowed, and connection has been close properly (Fortigate receive TCP: Fin-fin/ack)
View solution in original post
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2022 Fortinet, Inc. All Rights Reserved.