Dear Team,
Anyone can help me the command which I have written here and description is correct.
Please guide me.
I am writing this post for the sake of knowledge, As I was trying to access https://www.fortinet.com from LAN machine. I just want to check which policy is using.
diagnose debug enable (to enable debug)
diagnose debug flow filter (addr,clear,daddr,dport,negate,port,proto,saddr,sport) (to filter source/destination address)
diagnose debug flow show function-name enable (not aware of this command)
diagnose debug console timestamp enable (not aware of this command)
diagnose debug flow trace start 100 (it will start capturing 100 packets)
diagnose debug flow trace stop (to stop capturing the packets)
diagnose debug disable (to disable debug)
diagnose debug flow console enable (not aware of this command)
diagnose debug reset (to reset debug, may ealier debug command used)
Go to LAN machine and try to access - https://www.fortinet.com
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi Umesh,
You can run the command mention and in about it generally shows "allowed by and policy ID number which indicates the traffic passing through which policy.
regarding command
diagnose debug console timestamp enable -it enables the time stamp of logs
You can run the mention command set and it will generate logs about the flow of traffic.
Hi
The below article might help you for debugging the packet flow;
https://docs.fortinet.com/document/fortigate/7.6.0/administration-guide/54688/debugging-the-packet-f...
Hi,
Please refer to this article for debug flow:- https://docs.fortinet.com/document/fortigate/6.2.16/cookbook/54688/debugging-the-packet-flow
this article will help you to understand the commands of debug flow :- https://docs.fortinet.com/document/fortigate/7.6.0/cli-troubleshooting-cheat-sheet/420966/cli-troubl...
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1663 | |
1077 | |
752 | |
446 | |
220 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.