diagnose debug application wa dbd
Firmware – FortiOS: 5.0 5.2 5.4
This command is used to display the debug level for the WAN optimization database server.
Syntax
diagnose debug application wa_dbd
Command
diagnose debug application wa_dbd
Output
wa_dbd debug level is 0 (0x0)
diagnose debug application
Syntax:
diagnose debug application
Options:
Application Options
acd — Aggregate Controller
alarmd — Alarmd daemon
alertmail — Alert mail daemon
authd — Auth daemon
autod — Automation daemon
awsd — Amazon Web Services (AWS) daemon
azd — Microsoft Azure daemon
chassis — Chassis daemon
crl-update — CRL update daemon
csfd — Security Fabric daemon
cu_acd — caputp AC daemon
cw_acd — Capwap AC daemon
cw_acd_helper — Capwap AC helper daemon
cw_acd_wlev — CAPWAP AC daemon wireless event notification
cw_acd_wpad — CAPWAP AC and WPA daemon (wpad)
ddnscd — DDNS client daemon
dhcp6c — DHCPv6 client
dhcp6r — DHCPv6 relay
dhcp6s — DHCPv6 server
dhcpc — DHCP client module
dhcprelay — DHCP relay daemon
dhcps — DHCP server
dialinsvr — Dial-in-server daemon
dlp — DLP
dlpfingerprint — DLP fingerprint daemon
dnsproxy — DNS proxy module
dsd — DLP Stat Daemon
dssccd — PCI DSS Compliance Check daemon
eap_proxy — EAP proxy daemon
extenderd — Extender Wan daemon
fcld — Fclicense daemon
fcnacd — FortiClient NAC daemon
fcnacd_ems — FortiClient NAC daemon EMS REST API calls
fgd_alert — FortiGuard alert message
fgfmd — FortiGate/FortiManager communication daemon
flcfgd — fortilink configuration daemon
fnbamb — Fortigate non-blocking auth daemon
foauthd — FortiguardOverride auth daemon
forticldd — FortiCloud daemon
forticron — Forticron daemon
fortilinkd — fortilink daemon
fsd — Forti-start daemon
fssod — FSSO daemon
ftpd — FTP proxy
garpd — VIP gratuitous ARP daemon
guacd — Guacamole proxy daemon
hamonitord — HA monitor module
harelay — HA relay module
hasync — HA synchronization module
hatalk — HA protocol module
http — HTTP proxy
httpsd — HTTPSd daemon
ike — IKE daemon
im — IM proxy
imap — IMAP proxy
info-sslvpn — SSL-VPN info daemon for Fortinet top bar
init — System init process
ipldbd — Ipldbd daemon
ipmc — Ipmc sensor daemon
ipsengine — ips sensor
ipsmonitor — ips monitor
ipsufd — IPS URL filter resolver daemon
kmiglogd — Kernel Log daemon
l2tp — L2TP daemon
l2tpcd — L2tpcd daemon
link-monitor — Link monitor daemon
lldptx — Link Layer Discovery Protocol (LLDP) Transmitter
lted — USB LTE daemon
miglogd — Log daemon
modemd — MODEM daemon
mrd — Mobile router daemon
netscan — Netscan
netxd — NetX REST API daemon.
nntp — NNTP proxy
nq — NAC quarantine daemon
ntpd — NTPd daemon
ocid — Oracle Cloud Infrastructure (OCI) daemon
ocvpn — One-Click VPN
ovrd — Override daemon
pop3 — POP3 proxy
ppp — PPP daemon
pppoed — PPPoE client Daemon
pptp — PPTP daemon
pptpc — PPTP client
proxy — Proxy acceptor
proxyacceptor — Proxy acceptor
proxydaemon — Proxy daemon
proxyworker — Proxy worker
quarantine — Quarantine daemon
radiusd — RADIUS daemon
radvd — Router adv daemon
reportd — report daemon
rsyslogd — Rsyslogd daemon
rtmon — PING server
scanunit — Scanunit daemon
sccp — SCCP ALG
scep — SCEP
sdncd — SDN Connector daemon
server-probe — Server probe daemon
sessionsync — Session sync daemon
sflowd — sFlow protocol module
sip — SIP ALG
smbcd — SMB client daemon
smtp — SMTP proxy
snmpd — SNMP daemon
spamfilter — Spam filter module
spareblock — Set debug spare block count
src-vis — Source Visibility daemon
sshd — Sshd daemon
ssl — SSL daemon
sslvpn — sslvpn
stp — Spanning Tree Protocol daemon
update — Update daemon
uploadd — Upload daemon
urlfilter — Urlfilter daemon
vpd — VPN policy daemon
vrrpd — VRRP daemon
vs — virtual-server
wa_cs — WAN acceleration cs server
wa_dbd — WAN acceleration db server
wabcs — WAN acceleration byte cache storage
wad — WAN acceleration proxy
waocs — WAN acceleration object cache storage
wccpd — WCCP daemon
wifi — WiFi setting
wiredap — Wired AP (802.1X port-based auth) daemon
wpad — Port access entity daemon
wpad-crash-hexdump — Dump wpad crash in hexedecimal format
wpad_dump — Dump wpad packet in binary format
zebos — ZebOS
zebos-launcher — ZebOS launcher daemon
diagnose debug application alertmail
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for alert email. Displaying all messages will provide you with all information regarding email and SMS messaging leaving the FortiGate. If you omit the integer level, the CLI displays the current verbosity level.
Syntax
diagnose debug application alertmail
Integer Levels
-1 Display all messages.
0 Do not display messages.
Example
diagnose debug application alertmail
alertmail debug level is -1 (0xffffffff)
diagnose debug application authd
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for authentication daemon. The display all messages command will provide you with information regarding authentication communication between the FortiGate and radius servers. FortiGate. If you omit the integer level, the CLI displays the current verbosity level.
Syntax
diagnose debug application authd
Integer Levels
-1 Display all messages.
0 Do not display messages.
Example
diagnose debug application authd -1
diagnose debug application chassis
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Using the display all messages command will provide you with any error messages regarding the chassis on the unit.
Syntax
diagnose debug application chassis
Example
diagnose debug application chassis
chassis debug level is 0 (0x0)
diagnose debug application crl-update
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to look at the CRL request.
Syntax
diagnose debug application crl-update
Example
diagnose debug application crl-update -1
diagnose debug application http
Firmware -FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for the HTTP protocol parser. This parser module dissects the HTTP headers and content body for analysis by other modules such as rewriting, HTTP protocol constraints, server information disclosure, and attack signature matching. If you omit the integer number, the CLI displays the current verbosity level.
Syntax
diagnose debug application http
Integer Variables
-1 Display all messages.
0 Do not display messages.
Example
diagnose debug application http
http debug level is 0 (0x0)
diagnose debug application httpsd
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to display chatter if users log in using https.
Syntax
diagnose debug application httpsd
Integer Levels
-1 Display all messages.
0 Do not display messages.
Example
diagnose debug application httpsd -1
diagnose debug application imap
FortiOS: 5.0 5.2 5.4 5.6 6.0
Syntax
diagnose debug application imap
Integer Levels
-1 Display all messages.
0 Do not display messages.
Example
diagnose debug application imap -1
diagnose debug application quarantine
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
This debug command allows you to see if anything is quarantined due to antivirus.
Syntax
diagnose debug application quarantine
Example
diagnose debug application quarantine
quarantine debug level is 0 (0x0)
diagnose debug application sshd
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for the SSH daemon, sshd. If you omit the number, the CLI displays the current verbosity level.
Syntax
diagnose debug application sshd
Integer Variables
-1 display all messages
0 do not display messages
Example
diagnose debug application sshd
sshd debug level is 0 (0x0)
diagnose debug application ssl
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logging for SSL/TLS offloading. SSL offloading is supported only when the FortiWeb appliance is operating in reverse proxy mode or true transparent proxy mode. If you omit the number, the CLI displays the current verbosity level.
Syntax
diagnose debug application
Variables
-1 Display all messages.
0 Do not display messages.
Example
diagnose debug application ssl
ssl debug level is 0 (0x0)
diagnose debug application sslvpn
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
If you cannot connect to SSLVPN, use this command to debug and see why the portal is not passing through.
Syntax
diagnose debug application sslvpn
Example
diagnose debug application sslvpn
sslvpn debug level is 0 (0x0)
Emergency 0x00000001 : disable
Alert 0x00000002 : disable
Critical 0x00000004 : disable
Error 0x00000008 : disable
Warning 0x00000010 : disable
Notice 0x00000020 : disable
Information 0x00000040 : disable
Debug 0x00000080 : disable
SSL Information 0x00000100 : disable
HTTP proxy 0x00000200 : disable
RADIUS Frame IP 0x00000400 : disable
Mod gzip 0x00000800 : disable
Authentication 0x00001000 : disable
FTP 0x00002000 : disable
SMB 0x00004000 : disable
HTTP request 0x00008000 : disable
Fortinet bar 0x00010000 : disable
DNS 0x00020000 : disable
diagnose debug application update
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
This debug command allows you to view any updates related to your FortiGate.
Syntax
diagnose debug application update
Example
diagnose debug application update
update debug level is 0 (0x0)
diagnose debug application uploadd
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the debug level of upload daemon from 0-8. If you omit the integer number, the CLI displays the current verbosity level.
Syntax
diagnose debug application uploadd
Example
diagnose debug application uploadd
uploadd debug level is 0 (0x0)
diagnose debug application urlfilter
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Syntax
diagnose debug application urlfilter
Where the
diagnose debug authd clear
This command is used to clear internal data structures and keep alive sessions.
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Syntax
diagnose debug authd clear
diagnose debug authd memory
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Syntax
diagnose debug authd memory
diagnose debug console send
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Syntax
diagnose debug console send
diagnose debug crashlog
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to show crash logs from application proxies that have call back traces, segmentation faults, or memory register dumps, or to delete the crash log.
The interval option was added in 5.6
Syntax
diagnose debug crashlog get
diagnose debug crashlog clear
diagnose debug crashlog read
diagnose debug crashlog interval
diagnose debug crashlog history
Options
get
Command
diagnose debug crashlog get
Output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clear
Command
diagnose debug crashlog clear
Output no output
read
Command
diagnose debug crashlog read
Output
1: 2014-06-05 05:56:04 the killed daemon is /bin/pyfcgid: status=0x0
2: 2014-06-05 06:07:01 the killed daemon is /bin/pyfcgid: status=0x0
3: 2014-06-05 07:01:09 the killed daemon is /bin/pyfcgid: status=0x0
4: 2014-06-05 07:11:36 the killed daemon is /bin/pyfcgid: status=0x0
5: 2014-06-05 07:13:46 <00044> proxyapp=imd pid=62 exittype=exit code=15
6: 2014-06-05 07:13:46 <00044> total=443 free=217 shmfs_total=180 shmfs_free=176
7: 2014-06-05 07:13:46 <00044> proxyapp=sslworker000 pid=56 exittype=exit code=15
8: 2014-06-05 07:13:46 <00044> total=443 free=219 shmfs_total=180 shmfs_free=176
9: 2014-06-05 07:13:47 <00044> proxyapp=sslacceptor pid=55 exittype=exit code=15
10: 2014-06-05 07:13:47 <00044> total=443 free=223 shmfs_total=180 shmfs_free=176
11: 2014-06-05 07:13:47 <00044> proxyapp=proxyacceptor pid=49 exittype=exit code=0
12: 2014-06-05 07:13:47 <00044> total=443 free=224 shmfs_total=180 shmfs_free=176
13: 2014-06-05 07:13:47 the killed daemon is /bin/fgfmd: status=0x0
14: 2014-06-05 07:13:47 the killed daemon is /bin/uploadd: status=0x0
15: 2014-06-05 07:13:47 the killed daemon is /bin/proxyd: status=0x0
interval
Command
diagnose debug crashlog interval 6400
Output No output
history
Command
diagnose debug crashlog history
Output Crash log interval is 6400 seconds
diagnose debug crashlog send
Firmware – FortiOS: 5.0 5.2 5.4
This command is used to send out MODEM HA AT command.
Syntax
diagnose debug console send
diagnose debug crashlog timestamp
Firmware – FortiOS: 5.0 5.2
Use this command to enable or disable the timestamp in debug logs.
Syntax
diagnose debug console timestamp disable
diagnose debug console timestamp enable
diagnose debug disable
Firmware – FortiOS: 5.0 5.2 5.4
This command is used to disable debug output.
Syntax
diagnose debug disable
diagnose debug disable/enable
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to enable/disable debugging messages to the CLI display.
Syntax
diagnose debug enable
diagnose debug disable
diagnose debug duration
Firmware – FortiOS: 5.6
This command displays the currently enabled debug options.
Syntax
diagnose debug duration
Options
By default, the debug duration time is 5 minutes, 0 means forever. Upon reboot, duration time is reset to the default value of 5 minutes.
diagnose debug reset
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to reset all debug log settings to default settings for the currently installed firmware version. If you have not upgraded or downgraded the firmware, this restores the factory default settings.
Syntax
diagnose debug reset
diagnose debug flow show
This command displays debug flow options.
5.6
The following command options were removed in version 5.6
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Syntax
diagnose debug flow show
Options
diagnose debug flow show console disable
diagnose debug flow show console enable
diagnose debug flow show function-name disable
diagnose debug flow show function-name enable
diagnose debug flow show iprope disable
diagnose debug flow show iprope enable
diagnose debug flow trace
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to trace the flow of packets through the FortiWeb appliance’s processing modules and network stack.
Syntax
diagnose debug flow trace
Options
Start trace
diagnose debug flow trace start
Start IPv6 trace
diagnose debug flow trace start6
Stop trace
diagnose debug flow trace stop
Stop IPv6 trace
diagnose debug flow trace stop6
diagnose debug info
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to display a list of debug log settings.
Syntax
diagnose debug info
Example(s)
diagnose debug info
debug output: disable
console timestamp: disable
console no user log message: disable
zebos debug level: 306783954 (0x124926d2)
CLI debug level: 3
diagnose debug rating
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Pre 6.0 Use this command to display the available FortiGuard Distribution Network servers for antispam queries and to set the frequency for refreshing the server list.
Post 6.0 Use this command to display rating info that used to be found in get webfilter status
Chamges made in 6.0
Reformating of the output of the command
Syntax
Pre 6.0
diagnose debug rating
Post 6.0
diagnose debug rating
Pre 6.0 Options
The diag debug rating flags indicate the server status:
D Indicates the server was found via the DNS lookup of the hostname. If the hostname returns more than one IP address, all of them will be flagged with ‚D’ and will be used first for INIT requests before falling back to other servers.
I Indicates the server to which the last INIT request was sent.
F The server has not responded to requests and is considered to have failed.
T The server is currently being timed.
S In current code, Fortigate sends the rating requests to the FortiManager itself, although its IP address is not listed in the servers list received from the FortiManager. When a server has its ‚S’ flag set, rating requests can be sent to the server.
Example
Post 6.0
diagnose debug rating
Locale : english
Service : Web-filter
Status : Enable
License : Contract
Service : Antispam
Status : Disable
Service : Virus Outbreak Prevention
Status : Disable
-=- Server List (Tue Apr 10 11:00:33 2018) -=-
IP Weight RTT Flags TZ Packets Curr Lost Total Lost
173.243.138.194 10 1 DI -8 5 0 0
173.243.138.195 10 1 -8 1 0 …..
If webfilter is disabled:
diagnose debug rating
Locale : english
Service : Web-filter
Status : Disable
Service : Antispam
Status : Disable
Service : Virus Outbreak Prevention
Status : Disable
diagnose debug urlfilter test-url
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Syntax
diagnose debug urlfilter test-url