Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
anandhubs
New Contributor II

Command

How to find which policy is used for a specific traffic( from a particular source to particular destination.) using cli

1 Solution
knagaraju
Staff
Staff

Hello anandhubs,

Below is the command to check policy lookup from cli


diagnose firewall iprope lookup <src ip> <src port> <dst ip> <dst port> <protocol> <device>

For example
diagnose firewall iprope lookup 192.168.1.1 123 8.8.8.8 443 6 port4


Please let me know if you any additional queries.

View solution in original post

2 REPLIES 2
gfleming
Staff
Staff

I don't believe there is a way to do this using CLI. You can use grep to filter your config output but that's about it AFAIK

Cheers,
Graham
knagaraju
Staff
Staff

Hello anandhubs,

Below is the command to check policy lookup from cli


diagnose firewall iprope lookup <src ip> <src port> <dst ip> <dst port> <protocol> <device>

For example
diagnose firewall iprope lookup 192.168.1.1 123 8.8.8.8 443 6 port4


Please let me know if you any additional queries.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors