Hi. Is it possible to disable the firewall functionality in general so the FGT is acting like a router without firewall session handling? Have here a FGT60C and with FOS5.2 it feals really slow. Because we use it woutout any firewall rules (any-any) in this case, maybe we can help the device to have more free power.
is that possible? haven' t found a command on cli yet.
Only the GUI feels slow. Have also disabled the logging on GUI (think that will switch it of, because I haven' t found a CLI command to disable disk logging for that device)....
Will try it tomorrow on a 100MBit/s uplink and will see how it performs. Will replace a Cisco 891 Router.
I agree with emnoc; I would attempt to troubleshoot the slowness issue -- starting with checking for any duplex/speed mismatch on your " WAN" interface. You can do this from the CLI by typing diag hardware deviceinfo nic <interface name> and check for any errors.
Run a few commands first before you disable everything. Maybe a few UTM engines are causing the performance issue, not necessarily the web gui or the firewall.
# get system performance status
# diagnose sys top-summary
if any of them running on high CPU/memory, than check the log;
# exe log filter category 1 <--- for Events. Without number for the full list.
# exe log display
At least you would know what is causing the performance issue, instead of just assuming that it' s the web UI.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.