Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • New Features

    6.2.0
    7.6.0
    7.4.0
    7.2.0
    7.0.0
    6.4.0
    6.2.0

    Centralized Web Filtering Statistics

    Centralized Web Filtering Statistics

    Instead of individual counters, this version uses a centralized set of counters for the combined results for Explicit Proxy, Flow mode, and Proxy mode web filtering.

    The CLI shows the global cumulative IPS engine daemon/workers statistics. For Proxy mode or Flow mode web filtering, you can now use these counters to check all the Proxy or Flow daemons/workers statistics. You don't have to check the statistics for each daemon/worker or check the statistics from the URL filter daemon (FortiGuard rating daemon).

    Sample usage

    You must use the CLI to use this feature.

    Use the Flow mode web filtering global statistics counter for the web filtering statistics of all accessible VDOMs for an IPS engine.

    To display global Flow URL filter statistics counter:
    (global)# diag test app ipsmonitor 29           
Global URLF states:
request: 116
response: 116
pending: 1
request error: 0
response timeout: 0
blocked: 24
allowed: 92
    To reset the global Flow URL filter statistics counter: 
    (global)# diag test app ipsmonitor 30

    Proxy mode web filter

    The Proxy mode web filter counter is not new. This version adds the results from Flow mode.

    Use the Proxy mode web filtering statistics counter for all the web filtering statistics of the WAD daemon, including transparent proxy policy and explicit webproxy policy scenarios. This is global and per-VDOM.

    To use Proxy mode web filtering:
    (vdom)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under VDOM
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6

    (global)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under global
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6
    To define global or per-VDOM output statistics:
    (global)# diagnose wad filter vd root   <-- filter-out output for vdom root

(global)# diagnose wad stats filter list


filtering of vdom root    <-- statistics for VDOM root (under global)

  dlp = 0
  content-type = 0
  urls:
    examined = 0
    allowed = 0
    blocked = 0
    logged = 0
    overridden = 0
    Previous
    Next

    Related Videos

    sidebar video

    Reliable Web Filter Statistics

    • 1,243 views
    • 5 years ago

    Centralized Web Filtering Statistics

    Centralized Web Filtering Statistics

    Instead of individual counters, this version uses a centralized set of counters for the combined results for Explicit Proxy, Flow mode, and Proxy mode web filtering.

    The CLI shows the global cumulative IPS engine daemon/workers statistics. For Proxy mode or Flow mode web filtering, you can now use these counters to check all the Proxy or Flow daemons/workers statistics. You don't have to check the statistics for each daemon/worker or check the statistics from the URL filter daemon (FortiGuard rating daemon).

    Sample usage

    You must use the CLI to use this feature.

    Use the Flow mode web filtering global statistics counter for the web filtering statistics of all accessible VDOMs for an IPS engine.

    To display global Flow URL filter statistics counter:
    (global)# diag test app ipsmonitor 29           
Global URLF states:
request: 116
response: 116
pending: 1
request error: 0
response timeout: 0
blocked: 24
allowed: 92
    To reset the global Flow URL filter statistics counter: 
    (global)# diag test app ipsmonitor 30

    Proxy mode web filter

    The Proxy mode web filter counter is not new. This version adds the results from Flow mode.

    Use the Proxy mode web filtering statistics counter for all the web filtering statistics of the WAD daemon, including transparent proxy policy and explicit webproxy policy scenarios. This is global and per-VDOM.

    To use Proxy mode web filtering:
    (vdom)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under VDOM
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6

    (global)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under global
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6
    To define global or per-VDOM output statistics:
    (global)# diagnose wad filter vd root   <-- filter-out output for vdom root

(global)# diagnose wad stats filter list


filtering of vdom root    <-- statistics for VDOM root (under global)

  dlp = 0
  content-type = 0
  urls:
    examined = 0
    allowed = 0
    blocked = 0
    logged = 0
    overridden = 0
    Previous
    Next