Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
nvcf
New Contributor

Created on ‎05-31-2023 04:31 AM

Firewall Policy Performing filtering even after deletion

 

Help pls

 

Escalate to FortiSupport or... ?

 

Firewall Policy (Policy ID 1 ) performing filtering even after deletion, this i confirm on FortiAnalyser.

 

I confirm deletion on FortiMgr-vm64 v7.2.2  Fgt3000D v7.0.7 (Gui, cli) also

 

FortiMgr is synchronized with Fgt3000D

 

Thanks in advance

image.png

566
0 Kudos
3 REPLIES 3
scan888
Contributor

Created on ‎05-31-2023 04:41 AM

Hi

 

Try to check the traffic with "debug flow":

 

diag debug enable
diag debug flow filter addr <src or dst ip>
diag debug flow trace start 10

 

With the debug output ou are able to double check witch rule is applied definitily. 

- Have you found a solution? Then give your helper a "Like" and mark the solution.
- Have you found a solution? Then give your helper a "Like" and mark the solution.
556
0 Kudos
AEK
SuperUser
SuperUser

Created on ‎05-31-2023 09:00 AM

Hi

Are you using policy based NGFW mode?

AEK
AEK
531
0 Kudos
JimBennit
New Contributor

Created on ‎05-31-2023 09:49 AM

There is a bug that this will happen. Re create your policy 

use cli to config firewall policy, and do a no to the policy that you want deleted in the cli first and then delete the policy

517
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.