Fortinet black logo

New Features

Home FortiGate / FortiOS 6.4.0 New Features

SD-WAN logging improvement to identify matched application

6.4.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.0
Copy Link
Copy Doc ID de1e129a-0283-11ea-8977-00505692583a:342298
Download PDF

SD-WAN logging improvement to identify matched application

In SD-WAN rules, users can define destinations based on applications. With this enhancement, the vwlservice field in the forward traffic log has been updated to include the matched application.

Sample log
183: date=2020-01-17 time=16:48:40 logid="0000000013" type="traffic" subtype="forward" level="notice" vd="root" eventtime=1579308520544853557 tz="-0800" srcip=192.168.1.222 srcport=51530 srcintf="port10" srcintfrole="undefined" dstip=172.217.3.193 dstport=443 dstintf="port9" dstintfrole="undefined" sessionid=12654 proto=6 action="close" policyid=1 policytype="policy" poluuid="7d67e686-3924-51ea-c519-50884240bb75" policyname="1" service="HTTPS" dstcountry="United States" srccountry="Reserved" trandisp="snat" transip=172.16.200.1 transport=51530 appid=31077 app="YouTube" appcat="Video/Audio" apprisk="elevated" applist="g-wifi-default" duration=1 sentbyte=597 rcvdbyte=319 sentpkt=8 rcvdpkt=4 vwlid=2 vwlservice="YouTube" vwlquality="Seq_num(2), alive, selected" utmaction="allow" countapp=1 utmref=65422-94
To view SD-WAN logs in the GUI:
  1. Go to Log & Report > Forward Traffic. The SD-WAN Internet Service column displays the application.
  2. Select a log entry to view the details.

Previous
Next

SD-WAN logging improvement to identify matched application

In SD-WAN rules, users can define destinations based on applications. With this enhancement, the vwlservice field in the forward traffic log has been updated to include the matched application.

Sample log
183: date=2020-01-17 time=16:48:40 logid="0000000013" type="traffic" subtype="forward" level="notice" vd="root" eventtime=1579308520544853557 tz="-0800" srcip=192.168.1.222 srcport=51530 srcintf="port10" srcintfrole="undefined" dstip=172.217.3.193 dstport=443 dstintf="port9" dstintfrole="undefined" sessionid=12654 proto=6 action="close" policyid=1 policytype="policy" poluuid="7d67e686-3924-51ea-c519-50884240bb75" policyname="1" service="HTTPS" dstcountry="United States" srccountry="Reserved" trandisp="snat" transip=172.16.200.1 transport=51530 appid=31077 app="YouTube" appcat="Video/Audio" apprisk="elevated" applist="g-wifi-default" duration=1 sentbyte=597 rcvdbyte=319 sentpkt=8 rcvdpkt=4 vwlid=2 vwlservice="YouTube" vwlquality="Seq_num(2), alive, selected" utmaction="allow" countapp=1 utmref=65422-94
To view SD-WAN logs in the GUI:
  1. Go to Log & Report > Forward Traffic. The SD-WAN Internet Service column displays the application.
  2. Select a log entry to view the details.

Previous
Next