Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
SoulFlazer
New Contributor

Fortigate log in FortiAnalyzer - Intermittent deny log with dst interface "unknown-0"

Hi,

 

Today in the fortianalyzer with firmware 5.6.6 connected to a FortiGate cluster of 3000D with firmware 5.6.6 we noticed some logs related to TCP sessions that intermittently are displayed as deny-policy violation - destination interface "unknown-0".

 

For that particular type of flow there is a configured policy that is matched and the logs shown on the fortinanalyzer alternate with the policy permit and the deny policy violation log ID: dst "unknown-0" - Log ID 0000000007.

 

Someone has had occasion to clash with this problem? could it be related to some timer value on TCP sessions since intermittent logs come only on logs belonging to TCP sessions?

 

Thanks in advance for the support!

0 REPLIES 0
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors