Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
WD40
New Contributor

Created on ‎02-08-2021 06:38 AM

Sequence number (Seq#) field: where is it?

Hi,

In my FortiGate firewall GUI (they are all running version 6.x), each policy rule has an ID field. But in some screenshots (mostly of firewalls running older software versions) I have seen the possibility to display a "Seq.#" (sequence number) column too. E.g. there's a screenshot in this forum thread that has this Seq#: https://forum.fortinet.com/tm.aspx?m=115842

However I can't seem to find that Seq# anywhere in the GUI.

How can one display this?

Have they removed this in version 6?

4694
0 Kudos
10 REPLIES 10
rwpatterson
Valued Contributor III

Created on ‎02-08-2021 12:00 PM

Welcome to the forums.

 

Right click on the top bar with ID, Source, Destination. etc. A drop down will appear and in there you can select what appears in the top header.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
4054
WD40
New Contributor
In response to rwpatterson

Created on ‎02-09-2021 12:49 AM

Thanks Robert, but unfortunately the Seq# is not in that list.

4054
0 Kudos
JerBae
New Contributor

Created on ‎04-09-2025 07:28 AM

I can also confirm having a FGT config running FOS 7.0.17 not displaying the "Seq. #" column.

I upgraded this config in a VM to 7.2.11 and 7.4.7 and could not find this sequence column reappearing. I don't know how old is the initial FGT config that I have. I found nowhere a clue about it, on Docs, Community, etc. Bizarre thing.

1329
0 Kudos
Toshi_Esumi
SuperUser
SuperUser
In response to JerBae

Created on ‎04-09-2025 08:38 AM Edited on ‎04-09-2025 08:41 AM

This has a quite history in FortiOS's GUI generations. But the bottom line is the Sequence number is just the order of policies in the config file, in other words the array number (+1) like a[0(Seq#1)], a[1(Seq#2)], ..... Historically it was shown at the first column in the policy GUI in earlier versions of FortiOS.
But that number can't be referred by other part of config or in debug output. That's because inside of FortiOS, ID is used to refer to individual policies. Like the policy ID#0 for the implicit deny policy at the very end of the sequence.

And the sequence numbers in GUI often caused confusion for those who just started using/learning FGTs because it's not used anywhere else to refer to. Therefore, at some point like 6.x, it stopped showing in GUI. If you want to know the sequence/order in config file, you just need to choose Sequence view or by Sequence in GUI. If you go to CLI, it's much more obvious like below:

fg40f-utm (policy) # edit ?
policyid Policy ID (0 - 4294967294).
24
2
8
1
30
6
26
7
11
15
16
17
18
25
19
20
21
22
23
27
28

It's showing IDs in sequence when you hit ? after edit. Seq#1=ID#24, Seq#2=ID#2, and so on in above. You can move each policy in the sequence like "move 2 before 24" to move the policy to the top. But you can't refer either of them by the sequence number.

Nothing bizarre about the change in history but natural progression of FortiOS when it's getting more mature for last 25 years. If you're a programmer, you would understand this almost instantly.

Toshi

1317
JerBae
New Contributor
In response to Toshi_Esumi

Created on ‎04-09-2025 08:51 AM

Thanks a lot for your reply Toshi, I like your explanation.

It is OK with only the ID as reference, in the CLI and in the GUI.

I worked for some time on the FortiManager and it is still displaying a Sequence column, maybe because not at its latest version (mixed ADOMs...). I did not look policies on the FortiGate until recently and noticing the absence of Seq.

1312
0 Kudos
Toshi_Esumi
SuperUser
SuperUser
In response to JerBae

Created on ‎04-09-2025 09:14 AM

FMG is a completely different animal since it might change even the policy ID in its GUI view when it installs/pushes it to a FGT depending on how those policies are built and ordered, and how one policy package is shared with multiple FGTs.
In other words, sequence # is more significant/meaningful than FGTs.

But it would be a different topic from this original thread. You should start a new post for that.

Toshi

1308
dingjerry_FTNT
Staff
Staff

Created on ‎04-09-2025 02:34 PM

Hi @WD40 ,

 

I believe that your Firewall Policy view is in "Interface Pair View" mode.  In this mode, there is no "seq #" option in the view.

 

seq.png

Regards,

Jerry
1263
0 Kudos
dingjerry_FTNT
Staff
Staff
In response to dingjerry_FTNT

Created on ‎04-09-2025 02:34 PM

If you choose "By Sequence" mode, you will have the "seq #" option in the view.

Regards,

Jerry
1262
0 Kudos
Toshi_Esumi
SuperUser
SuperUser
In response to dingjerry_FTNT

Created on ‎04-09-2025 02:49 PM

At least with 7.4.7, I don't see "Seq #" anywhere even with "By Sequence" or "Sequence Grouping View", regardless New layout or classic layout. ID shows in parentheses in the policy name column though.

GUI.png

Toshi

1258
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.