Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Mick
New Contributor

What values are available for the Action column?

FNG

Fortianalyzer 5.2.4 FortiView:

What are the list of values for the Action column?  I see Accept and Close for example.

And what are the list of values for the Security Action column?  I see Allow or it's blank.

And when you see something like the Action column has Close in it, and the Security Action column has Allow in it.  What does this mean?

And I've searched the manuals for the values and I didn't find them.

 

 

 

1 Solution
awasfi_FTNT
Staff
Staff

Hello,

 

You can refer to the following document for logs fields:

http://docs.fortinet.com/uploaded/files/2050/FortiOS_LogReference_v5.2.1.pdf

 

Action=close on traffic log mean traffic has been allowed, and connection has been close properly (Fortigate receive TCP: Fin-fin/ack)

 

Regards,

View solution in original post

1 REPLY 1
awasfi_FTNT
Staff
Staff

Hello,

 

You can refer to the following document for logs fields:

http://docs.fortinet.com/uploaded/files/2050/FortiOS_LogReference_v5.2.1.pdf

 

Action=close on traffic log mean traffic has been allowed, and connection has been close properly (Fortigate receive TCP: Fin-fin/ack)

 

Regards,