7 lutego 2019

debug

diagnose debug application wa dbd

Firmware – FortiOS: 5.0 5.2 5.4
This command is used to display the debug level for the WAN optimization database server.

Syntax
diagnose debug application wa_dbd

Command
diagnose debug application wa_dbd

Output
wa_dbd debug level is 0 (0x0)


diagnose debug application

Syntax:
diagnose debug application

Options:
Application Options
acd — Aggregate Controller
alarmd — Alarmd daemon
alertmail — Alert mail daemon
authd — Auth daemon
autod — Automation daemon
awsd — Amazon Web Services (AWS) daemon
azd — Microsoft Azure daemon
chassis — Chassis daemon
crl-update — CRL update daemon
csfd — Security Fabric daemon
cu_acd — caputp AC daemon
cw_acd — Capwap AC daemon
cw_acd_helper — Capwap AC helper daemon
cw_acd_wlev — CAPWAP AC daemon wireless event notification
cw_acd_wpad — CAPWAP AC and WPA daemon (wpad)
ddnscd — DDNS client daemon
dhcp6c — DHCPv6 client
dhcp6r — DHCPv6 relay
dhcp6s — DHCPv6 server
dhcpc — DHCP client module
dhcprelay — DHCP relay daemon
dhcps — DHCP server
dialinsvr — Dial-in-server daemon
dlp — DLP
dlpfingerprint — DLP fingerprint daemon
dnsproxy — DNS proxy module
dsd — DLP Stat Daemon
dssccd — PCI DSS Compliance Check daemon
eap_proxy — EAP proxy daemon
extenderd — Extender Wan daemon
fcld — Fclicense daemon
fcnacd — FortiClient NAC daemon
fcnacd_ems — FortiClient NAC daemon EMS REST API calls
fgd_alert — FortiGuard alert message
fgfmd — FortiGate/FortiManager communication daemon
flcfgd — fortilink configuration daemon
fnbamb — Fortigate non-blocking auth daemon
foauthd — FortiguardOverride auth daemon
forticldd — FortiCloud daemon
forticron — Forticron daemon
fortilinkd — fortilink daemon
fsd — Forti-start daemon
fssod — FSSO daemon
ftpd — FTP proxy
garpd — VIP gratuitous ARP daemon
guacd — Guacamole proxy daemon
hamonitord — HA monitor module
harelay — HA relay module
hasync — HA synchronization module
hatalk — HA protocol module
http — HTTP proxy
httpsd — HTTPSd daemon
ike — IKE daemon
im — IM proxy
imap — IMAP proxy
info-sslvpn — SSL-VPN info daemon for Fortinet top bar
init — System init process
ipldbd — Ipldbd daemon
ipmc — Ipmc sensor daemon
ipsengine — ips sensor
ipsmonitor — ips monitor
ipsufd — IPS URL filter resolver daemon
kmiglogd — Kernel Log daemon
l2tp — L2TP daemon
l2tpcd — L2tpcd daemon
link-monitor — Link monitor daemon
lldptx — Link Layer Discovery Protocol (LLDP) Transmitter
lted — USB LTE daemon
miglogd — Log daemon
modemd — MODEM daemon
mrd — Mobile router daemon
netscan — Netscan
netxd — NetX REST API daemon.
nntp — NNTP proxy
nq — NAC quarantine daemon
ntpd — NTPd daemon
ocid — Oracle Cloud Infrastructure (OCI) daemon
ocvpn — One-Click VPN
ovrd — Override daemon
pop3 — POP3 proxy
ppp — PPP daemon
pppoed — PPPoE client Daemon
pptp — PPTP daemon
pptpc — PPTP client
proxy — Proxy acceptor
proxyacceptor — Proxy acceptor
proxydaemon — Proxy daemon
proxyworker — Proxy worker
quarantine — Quarantine daemon
radiusd — RADIUS daemon
radvd — Router adv daemon
reportd — report daemon
rsyslogd — Rsyslogd daemon
rtmon — PING server
scanunit — Scanunit daemon
sccp — SCCP ALG
scep — SCEP
sdncd — SDN Connector daemon
server-probe — Server probe daemon
sessionsync — Session sync daemon
sflowd — sFlow protocol module
sip — SIP ALG
smbcd — SMB client daemon
smtp — SMTP proxy
snmpd — SNMP daemon
spamfilter — Spam filter module
spareblock — Set debug spare block count
src-vis — Source Visibility daemon
sshd — Sshd daemon
ssl — SSL daemon
sslvpn — sslvpn
stp — Spanning Tree Protocol daemon
update — Update daemon
uploadd — Upload daemon
urlfilter — Urlfilter daemon
vpd — VPN policy daemon
vrrpd — VRRP daemon
vs — virtual-server
wa_cs — WAN acceleration cs server
wa_dbd — WAN acceleration db server
wabcs — WAN acceleration byte cache storage
wad — WAN acceleration proxy
waocs — WAN acceleration object cache storage
wccpd — WCCP daemon
wifi — WiFi setting
wiredap — Wired AP (802.1X port-based auth) daemon
wpad — Port access entity daemon
wpad-crash-hexdump — Dump wpad crash in hexedecimal format
wpad_dump — Dump wpad packet in binary format
zebos — ZebOS
zebos-launcher — ZebOS launcher daemon


diagnose debug application alertmail

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for alert email. Displaying all messages will provide you with all information regarding email and SMS messaging leaving the FortiGate. If you omit the integer level, the CLI displays the current verbosity level.

Syntax
diagnose debug application alertmail

Integer Levels
-1 Display all messages.
0 Do not display messages.

Example
diagnose debug application alertmail
alertmail debug level is -1 (0xffffffff)



diagnose debug application authd

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for authentication daemon. The display all messages command will provide you with information regarding authentication communication between the FortiGate and radius servers. FortiGate. If you omit the integer level, the CLI displays the current verbosity level.

Syntax
diagnose debug application authd

Integer Levels

-1 Display all messages.
0 Do not display messages.

Example
diagnose debug application authd -1


diagnose debug application chassis

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Using the display all messages command will provide you with any error messages regarding the chassis on the unit.

Syntax
diagnose debug application chassis

Example
diagnose debug application chassis

chassis debug level is 0 (0x0)


diagnose debug application crl-update

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to look at the CRL request.

Syntax
diagnose debug application crl-update

Example
diagnose debug application crl-update -1


diagnose debug application http

Firmware -FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for the HTTP protocol parser. This parser module dissects the HTTP headers and content body for analysis by other modules such as rewriting, HTTP protocol constraints, server information disclosure, and attack signature matching. If you omit the integer number, the CLI displays the current verbosity level.

Syntax
diagnose debug application http

Integer Variables

-1 Display all messages.
0 Do not display messages.

Example
diagnose debug application http

http debug level is 0 (0x0)


diagnose debug application httpsd

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to display chatter if users log in using https.

Syntax
diagnose debug application httpsd

Integer Levels

-1 Display all messages.
0 Do not display messages.

Example
diagnose debug application httpsd -1


diagnose debug application imap
FortiOS: 5.0 5.2 5.4 5.6 6.0

Syntax
diagnose debug application imap

Integer Levels

-1 Display all messages.
0 Do not display messages.

Example
diagnose debug application imap -1


diagnose debug application quarantine

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
This debug command allows you to see if anything is quarantined due to antivirus.

Syntax
diagnose debug application quarantine

Example
diagnose debug application quarantine

quarantine debug level is 0 (0x0)


diagnose debug application sshd

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logs for the SSH daemon, sshd. If you omit the number, the CLI displays the current verbosity level.

Syntax
diagnose debug application sshd

Integer Variables

-1 display all messages
0 do not display messages

Example
diagnose debug application sshd

sshd debug level is 0 (0x0)


diagnose debug application ssl
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the verbosity level of debug logging for SSL/TLS offloading. SSL offloading is supported only when the FortiWeb appliance is operating in reverse proxy mode or true transparent proxy mode. If you omit the number, the CLI displays the current verbosity level.

Syntax
diagnose debug application

Variables
-1 Display all messages.
0 Do not display messages.

Example
diagnose debug application ssl

ssl debug level is 0 (0x0)


diagnose debug application sslvpn

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
If you cannot connect to SSLVPN, use this command to debug and see why the portal is not passing through.

Syntax
diagnose debug application sslvpn

Example
diagnose debug application sslvpn

sslvpn debug level is 0 (0x0)
Emergency 0x00000001 : disable
Alert 0x00000002 : disable
Critical 0x00000004 : disable
Error 0x00000008 : disable
Warning 0x00000010 : disable
Notice 0x00000020 : disable
Information 0x00000040 : disable
Debug 0x00000080 : disable
SSL Information 0x00000100 : disable
HTTP proxy 0x00000200 : disable
RADIUS Frame IP 0x00000400 : disable
Mod gzip 0x00000800 : disable
Authentication 0x00001000 : disable
FTP 0x00002000 : disable
SMB 0x00004000 : disable
HTTP request 0x00008000 : disable
Fortinet bar 0x00010000 : disable
DNS 0x00020000 : disable


diagnose debug application update

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
This debug command allows you to view any updates related to your FortiGate.

Syntax
diagnose debug application update

Example
diagnose debug application update

update debug level is 0 (0x0)



diagnose debug application uploadd

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to set the debug level of upload daemon from 0-8. If you omit the integer number, the CLI displays the current verbosity level.

Syntax
diagnose debug application uploadd

Example
diagnose debug application uploadd

uploadd debug level is 0 (0x0)


diagnose debug application urlfilter

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0

Syntax
diagnose debug application urlfilter
Where the value indicates the debug level



diagnose debug authd clear

This command is used to clear internal data structures and keep alive sessions.
Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0

Syntax
diagnose debug authd clear


diagnose debug authd memory

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0

Syntax
diagnose debug authd memory — Show authd memory usage information. {5.0}


diagnose debug console send

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0

Syntax
diagnose debug console send — Send out MODEM HA AT command. {5.0}


diagnose debug crashlog

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to show crash logs from application proxies that have call back traces, segmentation faults, or memory register dumps, or to delete the crash log.

The interval option was added in 5.6

Syntax
diagnose debug crashlog get
diagnose debug crashlog clear
diagnose debug crashlog read
diagnose debug crashlog interval
diagnose debug crashlog history
– Interval at which process crashes are written to storage (0 – 2147483647 sec, default = 3600, 0 = log all crashes)

Options
get
Command

diagnose debug crashlog get

Output
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clear
Command

diagnose debug crashlog clear

Output no output
read
Command

diagnose debug crashlog read

Output

1: 2014-06-05 05:56:04 the killed daemon is /bin/pyfcgid: status=0x0
2: 2014-06-05 06:07:01 the killed daemon is /bin/pyfcgid: status=0x0
3: 2014-06-05 07:01:09 the killed daemon is /bin/pyfcgid: status=0x0
4: 2014-06-05 07:11:36 the killed daemon is /bin/pyfcgid: status=0x0
5: 2014-06-05 07:13:46 <00044> proxyapp=imd pid=62 exittype=exit code=15
6: 2014-06-05 07:13:46 <00044> total=443 free=217 shmfs_total=180 shmfs_free=176
7: 2014-06-05 07:13:46 <00044> proxyapp=sslworker000 pid=56 exittype=exit code=15
8: 2014-06-05 07:13:46 <00044> total=443 free=219 shmfs_total=180 shmfs_free=176
9: 2014-06-05 07:13:47 <00044> proxyapp=sslacceptor pid=55 exittype=exit code=15
10: 2014-06-05 07:13:47 <00044> total=443 free=223 shmfs_total=180 shmfs_free=176
11: 2014-06-05 07:13:47 <00044> proxyapp=proxyacceptor pid=49 exittype=exit code=0
12: 2014-06-05 07:13:47 <00044> total=443 free=224 shmfs_total=180 shmfs_free=176
13: 2014-06-05 07:13:47 the killed daemon is /bin/fgfmd: status=0x0
14: 2014-06-05 07:13:47 the killed daemon is /bin/uploadd: status=0x0
15: 2014-06-05 07:13:47 the killed daemon is /bin/proxyd: status=0x0

interval
Command

diagnose debug crashlog interval 6400

Output No output
history
Command

diagnose debug crashlog history

Output Crash log interval is 6400 seconds


diagnose debug crashlog send

Firmware – FortiOS: 5.0 5.2 5.4
This command is used to send out MODEM HA AT command.

Syntax
diagnose debug console send


diagnose debug crashlog timestamp

Firmware – FortiOS: 5.0 5.2
Use this command to enable or disable the timestamp in debug logs.

Syntax
diagnose debug console timestamp disable
diagnose debug console timestamp enable



diagnose debug disable
Firmware – FortiOS: 5.0 5.2 5.4
This command is used to disable debug output.

Syntax
diagnose debug disable


diagnose debug disable/enable

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to enable/disable debugging messages to the CLI display.

Syntax
diagnose debug enable — Enable debug output. {5.0}
diagnose debug disable — Disable debug output. {5.0}


diagnose debug duration

Firmware – FortiOS: 5.6
This command displays the currently enabled debug options.

Syntax
diagnose debug duration

Options
By default, the debug duration time is 5 minutes, 0 means forever. Upon reboot, duration time is reset to the default value of 5 minutes.


diagnose debug reset

Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
Use this command to reset all debug log settings to default settings for the currently installed firmware version. If you have not upgraded or downgraded the firmware, this restores the factory default settings.

Syntax
diagnose debug reset — Reset all debug level to default. {5.0}


diagnose debug flow show

This command displays debug flow options.

5.6
The following command options were removed in version 5.6

  • diagnose debug flow show console enable
  • diagnose debug flow show console disable
  • Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0

    Syntax
    diagnose debug flow show

    Options
    diagnose debug flow show console disable — Disable display of trace on console.
    diagnose debug flow show console enable — Enable display of trace on console.
    diagnose debug flow show function-name disable — Disable display of function name.
    diagnose debug flow show function-name enable — Enable display of function name.
    diagnose debug flow show iprope disable — Disable trace iprope match.
    diagnose debug flow show iprope enable — Enable trace iprope match.



    diagnose debug flow trace
    Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
    Use this command to trace the flow of packets through the FortiWeb appliance’s processing modules and network stack.

    Syntax
    diagnose debug flow trace

    Options
    Start trace
    diagnose debug flow trace start

    Start IPv6 trace
    diagnose debug flow trace start6

    Stop trace
    diagnose debug flow trace stop

    Stop IPv6 trace
    diagnose debug flow trace stop6


    diagnose debug info
    Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
    Use this command to display a list of debug log settings.

    Syntax
    diagnose debug info

    Example(s)
    diagnose debug info

    debug output: disable
    console timestamp: disable
    console no user log message: disable
    zebos debug level: 306783954 (0x124926d2)
    CLI debug level: 3


    diagnose debug rating

    Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0
    Pre 6.0 Use this command to display the available FortiGuard Distribution Network servers for antispam queries and to set the frequency for refreshing the server list.

    Post 6.0 Use this command to display rating info that used to be found in get webfilter status

    Chamges made in 6.0
    Reformating of the output of the command

    Syntax
    Pre 6.0

    diagnose debug rating
    – This number indicates how often to refresh the server list in seconds.

    Post 6.0

    diagnose debug rating

    Pre 6.0 Options
    The diag debug rating flags indicate the server status:

    D Indicates the server was found via the DNS lookup of the hostname. If the hostname returns more than one IP address, all of them will be flagged with ‚D’ and will be used first for INIT requests before falling back to other servers.
    I Indicates the server to which the last INIT request was sent.
    F The server has not responded to requests and is considered to have failed.
    T The server is currently being timed.
    S In current code, Fortigate sends the rating requests to the FortiManager itself, although its IP address is not listed in the servers list received from the FortiManager. When a server has its ‚S’ flag set, rating requests can be sent to the server.

    Example
    Post 6.0
    diagnose debug rating
    Locale : english

    Service : Web-filter
    Status : Enable
    License : Contract

    Service : Antispam
    Status : Disable

    Service : Virus Outbreak Prevention
    Status : Disable

    -=- Server List (Tue Apr 10 11:00:33 2018) -=-

    IP Weight RTT Flags TZ Packets Curr Lost Total Lost
    173.243.138.194 10 1 DI -8 5 0 0
    173.243.138.195 10 1 -8 1 0 …..
    If webfilter is disabled:

    diagnose debug rating
    Locale : english

    Service : Web-filter
    Status : Disable

    Service : Antispam
    Status : Disable

    Service : Virus Outbreak Prevention
    Status : Disable


    diagnose debug urlfilter test-url

    Firmware – FortiOS: 5.0 5.2 5.4 5.6 6.0

    Syntax
    diagnose debug urlfilter test-url — URL to test. {5.0}