Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
fortinetforumfiokom
New Contributor II

Created on ‎05-07-2024 02:34 AM

How to enable a "Log violation traffic" in DENY policy

Hi,

I created a DENY policy (see. picture below). I tried to enable log violation traffic, but after click OK, and than reedit the policy it is switched off again. This is a normal behaviour?

 

Policy.png

 

2952
0 Kudos
1 Solution
ebilcari
Staff
Staff
In response to fortinetforumfiokom

Created on ‎05-07-2024 06:11 AM

This issue is already reported and affects the 7.4 firmware branch. It is already fixed and will be included in future releases (#985419). It is classified only as a GUI issue, if logging is enabled through CLI it will log the traffic.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.

View solution in original post

2845
0 Kudos
14 REPLIES 14
ebilcari
Staff
Staff
In response to fortinetforumfiokom

Created on ‎05-07-2024 06:11 AM

This issue is already reported and affects the 7.4 firmware branch. It is already fixed and will be included in future releases (#985419). It is classified only as a GUI issue, if logging is enabled through CLI it will log the traffic.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
2846
0 Kudos
fortinetforumfiokom
New Contributor II
In response to ebilcari

Created on ‎05-07-2024 07:37 AM

Attention!
You have to be careful that if you reopen the rule for editing in the GUI and even if you don't change anything, you have to set the Log violation traffic switch again each time, because if you don't, the log will be turned off automaticly on exit.

724
ebilcari
Staff
Staff
In response to fortinetforumfiokom

Created on ‎05-07-2024 07:47 AM

Thanks for sharing your findings. It seems that each time the policy configurations are saved from GUI, it is wrongly interpreted like the option is unselected and will remove the line from the configuration file.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
715
0 Kudos
Ashishdeep
Staff
Staff
In response to fortinetforumfiokom

Created on ‎05-07-2024 06:15 AM

Was this issue occurred in the previous version before moving to 7.4.3 ?

 

744
0 Kudos
fortinetforumfiokom
New Contributor II
In response to Ashishdeep

Created on ‎05-07-2024 08:48 AM

I hadn't noticed this bug before.

702
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.