Firewall policy arrange in sequence group

StevenT · ‎06-08-2023

Anyone had try using this sequence group in the firewall policy via numbering order but the number we rearrange from the initial of 1,2,3,4,5,6 to become 1,2,3,5,4,6.

Does it follow the top-down approach or sequence id approach in sequence grouping once we rearrange the ID order?

pavankr5 · ‎06-08-2023

Hello @StevenT ,

In FortiGate firewalls, the firewall policies are typically evaluated based on the policy ID in ascending order. However, rearranging the policy IDs does not affect the evaluation order. The policy evaluation still follows the top-down approach, where the policies are processed from the top of the policy list to the bottom.

Thanks,

Pavan

View solution in original post

pavankr5 · ‎06-08-2023

Hello @StevenT ,

In FortiGate firewalls, the firewall policies are typically evaluated based on the policy ID in ascending order. However, rearranging the policy IDs does not affect the evaluation order. The policy evaluation still follows the top-down approach, where the policies are processed from the top of the policy list to the bottom.

Thanks,

Pavan

mgoswami · ‎06-08-2023

Hi,

Firewall examines the policies from top to bottom, based on the policy sequence number, until it finds the first matching policy. It doesn't depend on the policy ID.

Regards,

Manosh

Firewall policy arrange in sequence group

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website