I'm using 81E and did some https traffic, and saw re-signed ca from captured packets. And I wanna know which command can find the ssl inspection statistics. I got one, but I'm not sure what stand for "C" and "T". Is "C" for current? what's for "T"?:
Thanks for your reply. PS: do you know where to find the dpissl connection counter? For examples, https access to https://www.google.com from lan to wan and it's supposed there's one dpissl connection. Where can I find the counter?
Dry run: 0 --> ssl inspection mode is read-only
Inline: 0 --> ssl inspection mode is active, read/write traffic
Dynamic to dry: 0 --> switch to read only mode
Dynamic to inline: 0 --> switch to read/write mode
Inline offload: 0 --> ssl inspection detached from inspection
The above stats is for flow-based utm mode which is done by ipsengine daemon.
For proxy-based utm mode, check 'diag wad stats' output, which is done by wad daemon.
By default, utm profiles are flow-based in latest firmware.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.