Fortinet black logo

New Features

Centralized Web Filtering Statistics

Copy Link
Copy Doc ID 761d83e3-4a7b-11e9-94bf-00505692583a:373823
Download PDF

Centralized Web Filtering Statistics

Instead of individual counters, this version uses a centralized set of counters for the combined results for Explicit Proxy, Flow mode, and Proxy mode web filtering.

The CLI shows the global cumulative IPS engine daemon/workers statistics. For Proxy mode or Flow mode web filtering, you can now use these counters to check all the Proxy or Flow daemons/workers statistics. You don't have to check the statistics for each daemon/worker or check the statistics from the URL filter daemon (FortiGuard rating daemon).

Sample usage

You must use the CLI to use this feature.

Use the Flow mode web filtering global statistics counter for the web filtering statistics of all accessible VDOMs for an IPS engine.

To display global Flow URL filter statistics counter:
(global)# diag test app ipsmonitor 29           
Global URLF states:
request: 116
response: 116
pending: 1
request error: 0
response timeout: 0
blocked: 24
allowed: 92
To reset the global Flow URL filter statistics counter:
(global)# diag test app ipsmonitor 30

Proxy mode web filter

The Proxy mode web filter counter is not new. This version adds the results from Flow mode.

Use the Proxy mode web filtering statistics counter for all the web filtering statistics of the WAD daemon, including transparent proxy policy and explicit webproxy policy scenarios. This is global and per-VDOM.

To use Proxy mode web filtering:
(vdom)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under VDOM
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6

(global)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under global
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6
To define global or per-VDOM output statistics:
(global)# diagnose wad filter vd root   <-- filter-out output for vdom root

(global)# diagnose wad stats filter list


filtering of vdom root    <-- statistics for VDOM root (under global)

  dlp = 0
  content-type = 0
  urls:
    examined = 0
    allowed = 0
    blocked = 0
    logged = 0
    overridden = 0

Related Videos

sidebar video

Reliable Web Filter Statistics

  • 1,215 views
  • 5 years ago

Centralized Web Filtering Statistics

Instead of individual counters, this version uses a centralized set of counters for the combined results for Explicit Proxy, Flow mode, and Proxy mode web filtering.

The CLI shows the global cumulative IPS engine daemon/workers statistics. For Proxy mode or Flow mode web filtering, you can now use these counters to check all the Proxy or Flow daemons/workers statistics. You don't have to check the statistics for each daemon/worker or check the statistics from the URL filter daemon (FortiGuard rating daemon).

Sample usage

You must use the CLI to use this feature.

Use the Flow mode web filtering global statistics counter for the web filtering statistics of all accessible VDOMs for an IPS engine.

To display global Flow URL filter statistics counter:
(global)# diag test app ipsmonitor 29           
Global URLF states:
request: 116
response: 116
pending: 1
request error: 0
response timeout: 0
blocked: 24
allowed: 92
To reset the global Flow URL filter statistics counter:
(global)# diag test app ipsmonitor 30

Proxy mode web filter

The Proxy mode web filter counter is not new. This version adds the results from Flow mode.

Use the Proxy mode web filtering statistics counter for all the web filtering statistics of the WAD daemon, including transparent proxy policy and explicit webproxy policy scenarios. This is global and per-VDOM.

To use Proxy mode web filtering:
(vdom)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under VDOM
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6

(global)# diag wad stats filter list
......

filtering of all accessible vdoms <-- under global
  dlp          = 0
  content-type = 0
  urls:
     examined = 181
     allowed = 16
     blocked = 1
     logged = 95
     overridden = 6
To define global or per-VDOM output statistics:
(global)# diagnose wad filter vd root   <-- filter-out output for vdom root

(global)# diagnose wad stats filter list


filtering of vdom root    <-- statistics for VDOM root (under global)

  dlp = 0
  content-type = 0
  urls:
    examined = 0
    allowed = 0
    blocked = 0
    logged = 0
    overridden = 0