Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Administration Guide

Diagnostic Commands

Most diagnostic tools are in the CLI and are not available from the web UI. Many are used in the above sections. For more information on the diagnose command and other CLI commands, see the FortiWeb CLI Reference:

https://docs.fortinet.com/product/fortiweb/

The main diagnostic commands are listed as below:

Diagnose debug

FortiWeb-AWS-M01 # diagnose debug

admin-https        admin-https

application        set/get debug level for daemons

cli            debug cli

cloudinit        cloudinit

cmdb            debug cmdbsvr

console        console

coredumplog        coredumplog

crashlog        crashlog

daemonlog        daemonlog

disable        disable debug output

dnsproxy        dnsproxy

dpdkpktinfo        dpdkpktinfo

emerglog        emerglog

enable            enable debug output

flow            flow

info            show active debug level settings

jemalloc        jemalloc

jemalloc-conf        jemalloc-conf

jemalloc-heap        jemalloc-heap

kernlog        kernlog

memory        dump internal memory usage

netstatlog        netstatlog

proxy            set/get debug for proxyd

reset            reset all debug level to default

serial(ttyS0)        serial(ttyS0)

sslhardwarestatus    sslhardwarestatus

sysinit            sysinit

timestamp        timestamp

trace            trace

ttp            ttp

vm            vm

waf            waf

writedisk        writedisk

Diagnose network

Show, add or delete IP address, ARP, TCP/UDP connection, route tables, etc.

FortiWeb # diagnose network

aggregate    802.3ad link aggregation

arp        arp

ip        ip

irq        read network irq

redundant    redundant interface

route        route

rtcache    rtcache

rule        rule

sniffer        sniffer network traffic

tcp        tcp

udp        udp

vip        vip

Diagnose policy

Use this command to view the process ID, live sessions, and traffic statistics associated with a server policy.

FortiWeb # diagnose policy 

awscloud-stats    awscloud-stats

conn-psec        conn-psec

detail-stats        detail-stats

period-blockip    period-blockip

back-end server        back-end server

quarant-ip        quarant-ip

server-pool        server-pool

session        session

total-conn-psec    total-conn-psec

total-detail-stats    total-detail-stats

total-session        total-session

total-traffic        total-traffic

traffic            traffic

vdom-session        vdom-session

vdom-traffic        vdom-traffic

worker-detail-stats    worker-detail-stats

Diagnostic Commands

Most diagnostic tools are in the CLI and are not available from the web UI. Many are used in the above sections. For more information on the diagnose command and other CLI commands, see the FortiWeb CLI Reference:

https://docs.fortinet.com/product/fortiweb/

The main diagnostic commands are listed as below:

Diagnose debug

FortiWeb-AWS-M01 # diagnose debug

admin-https        admin-https

application        set/get debug level for daemons

cli            debug cli

cloudinit        cloudinit

cmdb            debug cmdbsvr

console        console

coredumplog        coredumplog

crashlog        crashlog

daemonlog        daemonlog

disable        disable debug output

dnsproxy        dnsproxy

dpdkpktinfo        dpdkpktinfo

emerglog        emerglog

enable            enable debug output

flow            flow

info            show active debug level settings

jemalloc        jemalloc

jemalloc-conf        jemalloc-conf

jemalloc-heap        jemalloc-heap

kernlog        kernlog

memory        dump internal memory usage

netstatlog        netstatlog

proxy            set/get debug for proxyd

reset            reset all debug level to default

serial(ttyS0)        serial(ttyS0)

sslhardwarestatus    sslhardwarestatus

sysinit            sysinit

timestamp        timestamp

trace            trace

ttp            ttp

vm            vm

waf            waf

writedisk        writedisk

Diagnose network

Show, add or delete IP address, ARP, TCP/UDP connection, route tables, etc.

FortiWeb # diagnose network

aggregate    802.3ad link aggregation

arp        arp

ip        ip

irq        read network irq

redundant    redundant interface

route        route

rtcache    rtcache

rule        rule

sniffer        sniffer network traffic

tcp        tcp

udp        udp

vip        vip

Diagnose policy

Use this command to view the process ID, live sessions, and traffic statistics associated with a server policy.

FortiWeb # diagnose policy 

awscloud-stats    awscloud-stats

conn-psec        conn-psec

detail-stats        detail-stats

period-blockip    period-blockip

back-end server        back-end server

quarant-ip        quarant-ip

server-pool        server-pool

session        session

total-conn-psec    total-conn-psec

total-detail-stats    total-detail-stats

total-session        total-session

total-traffic        total-traffic

traffic            traffic

vdom-session        vdom-session

vdom-traffic        vdom-traffic

worker-detail-stats    worker-detail-stats