FortiGate 的相关知识
conf_file_ver=2873081117195307246 每一次备份都会生成一个这样的序号,不影响使用。
这个本地证书,每次都发生变化。请问这个是正常的吧? 为什么每次这个证书都会不同? 是根据设备的什么参数,还是随机的。为什么别的证书不是这样的。
diagnose debug enable
diagnose debug console timestamp enable
diagnose debug flow filter
diagnose debug console show console enable
diagnose debug flow trace start xxxx 输出多少个符合条件的包
diagnose debug flow show function-name enable
五元组 源地址 目的地址 源端口 目的端口 接口。
$ 2012-05-25 13:50:50 id=20085 trace_id=90 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.4.3:8) from OUT."
2012-05-25 13:50:50 id=20085 trace_id=90 msg="allocate a new session-19efae23"
2012-05-25 13:50:50 id=20085 trace_id=90 msg="find a route: gw-195.0.4.3 via BMWZ"
2012-05-25 13:50:50 id=20085 trace_id=90 msg="Allowed by Policy-20:"
2012-05-25 13:50:51 id=20085 trace_id=91 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.4.3:8) from OUT."
2012-05-25 13:50:51 id=20085 trace_id=91 msg="Find an existing session, id-19efae23, original direction"
2012-05-25 13:50:52 id=20085 trace_id=92 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.4.3:8) from OUT."
2012-05-25 13:50:52 id=20085 trace_id=92 msg="Find an existing session, id-19efae23, original direction"
2012-05-25 13:50:53 id=20085 trace_id=93 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.4.3:8) from OUT."
2012-05-25 13:50:53 id=20085 trace_id=93 msg="Find an existing session, id-19efae23, original direction"
$ 2012-05-25 13:54:33 id=20085 trace_id=94 func=resolve_ip_tuple_fast line=2700 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.2.10:8) from OUT."
2012-05-25 13:54:33 id=20085 trace_id=94 func=resolve_ip_tuple line=2799 msg="allocate a new session-19efb092"
2012-05-25 13:54:33 id=20085 trace_id=94 func=vf_ip4_route_input line=1543 msg="find a route: gw-195.0.2.10 via CWJZ"
2012-05-25 13:54:33 id=20085 trace_id=94 func=fw_forward_handler line=317 msg="Allowed by Policy-5:"
2012-05-25 13:54:34 id=20085 trace_id=95 func=resolve_ip_tuple_fast line=2700 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.2.10:8) from OUT."
2012-05-25 13:54:34 id=20085 trace_id=95 func=resolve_ip_tuple_fast line=2727 msg="Find an existing session, id-19efb092, original direction"
2012-05-25 13:54:35 id=20085 trace_id=96 func=resolve_ip_tuple_fast line=2700 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.2.10:8) from OUT."
2012-05-25 13:54:35 id=20085 trace_id=96 func=resolve_ip_tuple_fast line=2727 msg="Find an existing session, id-19efb092, original direction"
2012-05-25 13:54:36 id=20085 trace_id=97 func=resolve_ip_tuple_fast line=2700 msg="vd-root received a packet(proto=1, 199.0.13.120:512->195.0.2.10:8) from OUT."
2012-05-25 13:54:36 id=20085 trace_id=97 func=resolve_ip_tuple_fast line=2727 msg="Find an existing session, id-19efb092, original direction"
本文出自 “一颗平和的心” 博客,谢绝转载!