Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ICT_Putte
New Contributor

Created on ‎10-20-2022 12:34 AM

how to reset hit counts for SD-WAN rules?

We are using a Fortigate 100F with firmware 7.2.2. 

 

Is there a way to reset the hit counts for specific SD-WAN rules? 

 

After some searching in the guides and the forum I found info to reset the hit counts for the policy rules but uptil now no luck in resetting the hit counts for the SD-WAN rules.

 

Can some of the guru's here help me or point me in the right direction? 

 

Thanks in advance

Labels:
573
0 Kudos
2 Solutions
aionescu
Staff
Staff

Created on ‎10-20-2022 12:54 AM Edited on ‎10-20-2022 12:55 AM

Hi @ICT_Putte ,

 

Welcome to the community.

Can you, please, try  diag firewall proute list  and then   clear hit_count using the policy route ID from ‘proute list’ ?

 

View solution in original post

567
sagha
Staff
Staff

Created on ‎10-20-2022 04:11 AM

Hi @ICT_Putte 

 

Here are the steps: 

 

1. Run the command 'diag firewall proute list '

 

2. Look for the relevant sdwan rule:

 

id=2130706435(0x7f000003) vwl_service=3(test)
source(1): 0.0.0.0-255.255.255.255
destination(1): 0.0.0.0-255.255.255.255
hit_count=179316 last_used=2022-10-20 13:04:57

 

3. Run the following command: 

2130706435 is id for this sdwan rule

 

diagnose firewall proute clear 2130706435

 

4. Result: 

 

id=2130706435(0x7f000003) vwl_service=3(test)
source(1): 0.0.0.0-255.255.255.255
destination(1): 0.0.0.0-255.255.255.255
hit_count=0 last_used=2022-10-20 13:05:58

 

Hope this helps. 

 

Thank you. 

Shahan

View solution in original post

554
3 REPLIES 3
aionescu
Staff
Staff

Created on ‎10-20-2022 12:54 AM Edited on ‎10-20-2022 12:55 AM

Hi @ICT_Putte ,

 

Welcome to the community.

Can you, please, try  diag firewall proute list  and then   clear hit_count using the policy route ID from ‘proute list’ ?

 

568
sagha
Staff
Staff

Created on ‎10-20-2022 04:11 AM

Hi @ICT_Putte 

 

Here are the steps: 

 

1. Run the command 'diag firewall proute list '

 

2. Look for the relevant sdwan rule:

 

id=2130706435(0x7f000003) vwl_service=3(test)
source(1): 0.0.0.0-255.255.255.255
destination(1): 0.0.0.0-255.255.255.255
hit_count=179316 last_used=2022-10-20 13:04:57

 

3. Run the following command: 

2130706435 is id for this sdwan rule

 

diagnose firewall proute clear 2130706435

 

4. Result: 

 

id=2130706435(0x7f000003) vwl_service=3(test)
source(1): 0.0.0.0-255.255.255.255
destination(1): 0.0.0.0-255.255.255.255
hit_count=0 last_used=2022-10-20 13:05:58

 

Hope this helps. 

 

Thank you. 

Shahan

555
ICT_Putte
New Contributor

Created on ‎10-20-2022 07:39 AM

Hi @aionescu and @sagha 

 

Thanks for the info. With it I managed to clear the hit count.

 

I noticed some strange behaviour thou (maybe a bug in the firmware version I'm using?):

 

When I used the command with a specific id of a sdwan rule it didn't work.

'diag firewall proute clear <id nummer> ' didn't gave an error but it also didn't clean the hit count.

If I gave the same command without the id nummer it cleared all the hitcounts of all the rules (as expected).

 

The firmware I'm using v7.2.2 build 1255.

 

With kind regards.

 

544
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.