Dears,
whenever a traffic is denied/allowed we can see in the Cisco ASDM ,,As same like ASDM do fortigate has a tool to monitor the denied and allowed traffic,
On fortinet i can see by the debug commands but not on the GUI i went to fortiview> source and filtered by source ip which is initiating a traffic but couldn't see any thing
Also i tried in the section logs>forwarded traffic but couldn't find the allowed traffic whose session was closed nor the denied traffic.
thanks
Will you have a few options
1: enableglobally log denies by the fwpolicy-id 0 under the system log settings
e.g
set fwpolicy-implicit-log enable
2: craft a policy # move it to the bottom of the stack and enable logging on that
PCNSE
NSE
StrongSwan
Dear
enableglobally log denies by the fwpolicy-id 0 under the system log settings
can you elaborate more i didnt understood the above lines
config log setting set fwpolicy-implicit-log enable
end
PCNSE
NSE
StrongSwan
@emnoc (implictely) says that these log settings are CLI-only.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.