Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
egondragon
New Contributor

Fortinet policy does not update

Hi all

 

I have a very basic issue on Fortigate 300D series:

 

I am sending traffic from one port to another and have configured a policy to test that

permits almost everything (all trafic from any source and any destination).

 

My problem is: there is no counter increase on my policy indicating any packet sent or forwarded

 

There is no packet received.

 

I suspect my packet are badly formed but my policy should at least show dropped traffic stats, shouldn't it ?

Is there any "hidden" reason that can explain this.

 

Note that source and destination are directly connected (on port1 and port2), all ports are up, 300D as gateway is pingable.

Thanks for any help.

 

Regards.

2 REPLIES 2
emnoc
Esteemed Contributor III

how are you viewing status on that policy ? and have you tried the   cli ?

 

e.g  ( assuming policy-id 88 )

 

diag sys session filter policy 88

diag sys session list

 

Also use the  diag debug flow to make 100% sure your hitting the policy-id that  are monitoring if you still see no stats.

 

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
ede_pfau
SuperUser
SuperUser

Q:

which FortiOS version?

are the ports you use for testing part of a switch?

Please show us the policy in question, and which kind of traffic you are testing with.

 

In short, if you see no Counts, the policy is not hit at all.


Ede


"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
Labels
Top Kudoed Authors