Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
unknown1020
Contributor

Created on ‎06-12-2023 03:25 PM

ping command on the fortigate

friends could help me by clarifying what is the difference between the command
#execute ping x.x.x.x and #execute ping-options x.x.x.x

Labels:
11835
0 Kudos
4 REPLIES 4
Toshi_Esumi
SuperUser
SuperUser

Created on ‎06-12-2023 03:35 PM

"exe ping-options" doesn't execute ping. But you can change like source IP, packet size(data-size), repeat-count, etc. when you run "exe ping". You can hit '?' to see what options are available:

myfgt-xxx (root) # exe ping-o ?
adaptive-ping Adaptive ping <enable|disable>.
data-size Integer value to specify datagram size in bytes.
df-bit Set DF bit in IP header <yes | no>.
interface Auto | <outgoing interface>.
interval Integer value to specify seconds between two pings.
pattern Hex format of pattern, e.g. 00ffaabb.
repeat-count Integer value to specify how many times to repeat PING.
reset Reset settings.
source Auto | <source interface IP>.
timeout Integer value to specify timeout in seconds.
tos IP type-of-service option.
ttl Integer value to specify time-to-live.
use-sdwan Use SD-WAN rules to get output interface <yes | no>.
validate-reply Validate reply data <yes | no>.
view-settings View the current settings for PING option.

 

Toshi

11828
0 Kudos
unknown1020
Contributor
In response to Toshi_Esumi

Created on ‎06-12-2023 10:06 PM

So when executing #exe ping-options x.x.x.x should I indicate the source IP of the computer where I want to ping another IP?

for example I have an ip of my lan 11.11.11.5 and I want to ping the ip 11.11.11.6; So from the CLI of the fortigate I could execute the command #exe ping-options 11.11.11.5 and then do a #execute ping 11.11.11.6 ?

11803
0 Kudos
Toshi_Esumi
SuperUser
SuperUser
In response to unknown1020

Created on ‎06-12-2023 10:33 PM

If you don't specify the source IP by the "exe ping-o", the FGT picks up the outgoing interface IP when you run "exe ping" by default. So you don't have to specify it if you don't need to change the source IP from the interface IP, like your example pinging something inside of directly connected subnets.
It's useful when there are multiple L3 devices/routers between the FGT and the ping destination, and when you need to test the destination and all routers in-between have a route back to other subnets on the FGT.

 

Toshi

11795
0 Kudos
unknown1020
Contributor
In response to Toshi_Esumi

Created on ‎06-12-2023 11:38 PM

thanks, it's clear to me

11785
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.