Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
StevenT
New Contributor III

Firewall policy arrange in sequence group

Anyone had try using this sequence group in the firewall policy via numbering order but the number we rearrange from the initial of 1,2,3,4,5,6 to become 1,2,3,5,4,6.

Does it follow the top-down approach or sequence id approach in sequence grouping once we rearrange the ID order?

 

1 Solution
pavankr5
Staff
Staff

Hello @StevenT ,

 

In FortiGate firewalls, the firewall policies are typically evaluated based on the policy ID in ascending order. However, rearranging the policy IDs does not affect the evaluation order. The policy evaluation still follows the top-down approach, where the policies are processed from the top of the policy list to the bottom.

 

Thanks,

Pavan

View solution in original post

2 REPLIES 2
pavankr5
Staff
Staff

Hello @StevenT ,

 

In FortiGate firewalls, the firewall policies are typically evaluated based on the policy ID in ascending order. However, rearranging the policy IDs does not affect the evaluation order. The policy evaluation still follows the top-down approach, where the policies are processed from the top of the policy list to the bottom.

 

Thanks,

Pavan

mgoswami
Staff
Staff

Hi,

 

Firewall examines the policies from top to bottom, based on the policy sequence number, until it finds the first matching policy. It doesn't depend on the policy ID.

 

Regards,

Manosh

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors