AJReynolds Tech Blog

 The following commands can be useful when troubleshooting issues on a FortiGate firewall from the CLI: 1. execute tac report This command runs the majority of the key troubleshooting commands. It doesnt take long to complete and its non-impactful to the functionality of the FortiGate firewall. This command outputs a lot of text, so it is best to be recording your SSH session prior to running this command so that the output is easily viewable after. 2. get system status This command displays the versions of the FortiGates firmware, and FortiGuard engines. It also displays other useful system information such as platform and license status. 3. get system performance status This command displays CPU and memory states, average network usage, average sessions and session startup rate, virus's caught, IPS attacks blocked and uptime. In Multi-VDOM mode this command needs to be run in global configuration mode (config global, instead of config vdom) 4. diagnose sys top This command lists

 A FortiGate firewall has 3 settings that can affect logging behavior on a policy. The three settings that can affect logging behavior on a FortiGate firewall policy are: The Log allowed traffic toggle The "Security Events" or "All Sessions" selection The available security profiles   The following table outlines the expected logging behavior when these different settings are combined: For example, enabling logging and selecting security events, while not enabling any security profiles, will result in no logs. You may as well have logging turned off.