Solved: How do I check OSPF sessions in FortiGate unit

This article describes about the procedure to check OSPF (Open Shortest Path First) sessions in FortiGate to investigate further.

To check and investigate OSPF sessions in FortiGate unit, run the following CLI commands as below to investigate OSPF sessions further.

# diagnose sys session list | grep proto=89 -A 15

Example:

# diagnose sys session list | grep proto=89 -A 15

session info: proto=89 proto_state=00 duration=12995 expire=599 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=0/0
state=local may_dirty
statistic(bytes/packets/allow_err): org=94428/1378/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 7/0 rx speed(Bps/kbps): 0/0
orgin->sink: org pre->in, reply out->post dev=7->0/13->7 gwy=0.0.0.0/0.0.0.0
hook=pre dir=org act=noop 10.89.2.146:0->224.0.0.5:0(0.0.0.0:0)
hook=post dir=reply act=noop 224.0.0.5:0->10.89.2.146:0(0.0.0.0:0)
misc=0 policy_id=4294967295 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=000000b9 tos=00/00 app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000

—
session info: proto=89 proto_state=00 duration=12998 expire=591 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=255/255
state=local nds
statistic(bytes/packets/allow_err): org=95552/1376/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 6/0 rx speed(Bps/kbps): 0/0
orgin->sink: org out->post, reply pre->in dev=0->7/7->0 gwy=0.0.0.0/0.0.0.0
hook=out dir=org act=noop 10.89.3.36:0->224.0.0.5:0(0.0.0.0:0)
hook=in dir=reply act=noop 224.0.0.5:0->10.89.3.36:0(0.0.0.0:0)
misc=0 policy_id=0 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=0000009b tos=ff/ff app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000

—
session info: proto=89 proto_state=00 duration=12998 expire=590 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=255/255
state=local nds npu
statistic(bytes/packets/allow_err): org=96432/1383/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 6/0 rx speed(Bps/kbps): 0/0
orgin->sink: org out->post, reply pre->in dev=0->19/19->0 gwy=0.0.0.0/0.0.0.0
hook=out dir=org act=noop 136.136.136.24:0->224.0.0.5:0(0.0.0.0:0)
hook=in dir=reply act=noop 224.0.0.5:0->136.136.136.24:0(0.0.0.0:0)
misc=0 policy_id=0 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=0000009d tos=ff/ff app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000

—

It looks like you are using an adblocker.