Hi All,
I have a problem with Policy ID 0, which is blocking certain broadcast traffic which is generating huge size of logs.
I googled and found the following command could stop this traffic:
config log setting set local-in-deny-broadcast {enable | disable} set local-in-deny-unicast {enable | disable} end But my question is, why is it generating this much of deny logs ? how to identify the origin of this ? Please help me ... Firewall version: 5.0.7 Thanks a trillion in advance !!! Regards, Sridhar Sre
In my experience, only in special cases one is interested to see denied traffic, mostly while troubleshooting. As default I would disable logging the implicit 'policy 0' traffic.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.