Fortigate Troubleshooting – VPN


This is my first post regarding troubleshooting Fortigate devices.

To troubleshoot the Fortigate VPN configuration we will use the following commands:

#diag debug enable
#diag debug console timestamp en #this command shows the time-stamp
#diag debug app ike -1  <- used for v4.0MR1 #diag vpn ike log-filter dst-addr4 <-used from v4.0MR2 to the latest version #diag debug app ike -1

<IP_PEER&gt <- is the ip of the remote peer.


To disable the VPN logging we can use:

#diag debug disable
#diag debug console timestamp dis
#diag debug app ike 0

The following commands show the active VPN tunnels:

#diag vpn tunnel list
#diag vpn gw list

5 Responses to “ “Fortigate Troubleshooting – VPN”

  1. I think the support could be improved. I had lost connection to the server, and all of a sudden I had my access after my billing. It is worth mentioning that the support is rather helpful. I explained the situation, and they promised to fix the problem by giving me additional credit.

  2. If some one wants expert view on the topic of running a blog
    then i suggest him/her to go to see this website, Keep up
    the pleasant job.

  3. Mira oil says:

    Hi, after reading this remarkable post i am as well delighted to share my experience here with colleagues.

  4. click says:

    It’s actually a great and useful piece of info. I am satisfied that you simply shared this useful information with us.
    Please stay us up to date like this. Thank you for sharing.


  1. Links & Tips: Fortinet | Infoblog - [...] newsblog – Fortinet troubleshooting ipsec vpn Firewall Guru Blog Fortinet docs Fortinet site2site @ coretekservices [...]

Leave a Reply

Your email address will not be published. Required fields are marked *