Anyone had try using this sequence group in the firewall policy via numbering order but the number we rearrange from the initial of 1,2,3,4,5,6 to become 1,2,3,5,4,6.
Does it follow the top-down approach or sequence id approach in sequence grouping once we rearrange the ID order?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello @StevenT ,
In FortiGate firewalls, the firewall policies are typically evaluated based on the policy ID in ascending order. However, rearranging the policy IDs does not affect the evaluation order. The policy evaluation still follows the top-down approach, where the policies are processed from the top of the policy list to the bottom.
Thanks,
Pavan
Hello @StevenT ,
In FortiGate firewalls, the firewall policies are typically evaluated based on the policy ID in ascending order. However, rearranging the policy IDs does not affect the evaluation order. The policy evaluation still follows the top-down approach, where the policies are processed from the top of the policy list to the bottom.
Thanks,
Pavan
Hi,
Firewall examines the policies from top to bottom, based on the policy sequence number, until it finds the first matching policy. It doesn't depend on the policy ID.
Regards,
Manosh
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.