This article describes about the procedure to check OSPF (Open Shortest Path First) sessions in FortiGate to investigate further.
To check and investigate OSPF sessions in FortiGate unit, run the following CLI commands as below to investigate OSPF sessions further.
# diagnose sys session list | grep proto=89 -A 15Example:
# diagnose sys session list | grep proto=89 -A 15session info: proto=89 proto_state=00 duration=12995 expire=599 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=0/0
state=local may_dirty
statistic(bytes/packets/allow_err): org=94428/1378/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 7/0 rx speed(Bps/kbps): 0/0
orgin->sink: org pre->in, reply out->post dev=7->0/13->7 gwy=0.0.0.0/0.0.0.0
hook=pre dir=org act=noop 10.89.2.146:0->224.0.0.5:0(0.0.0.0:0)
hook=post dir=reply act=noop 224.0.0.5:0->10.89.2.146:0(0.0.0.0:0)
misc=0 policy_id=4294967295 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=000000b9 tos=00/00 app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000—
session info: proto=89 proto_state=00 duration=12998 expire=591 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=255/255
state=local nds
statistic(bytes/packets/allow_err): org=95552/1376/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 6/0 rx speed(Bps/kbps): 0/0
orgin->sink: org out->post, reply pre->in dev=0->7/7->0 gwy=0.0.0.0/0.0.0.0
hook=out dir=org act=noop 10.89.3.36:0->224.0.0.5:0(0.0.0.0:0)
hook=in dir=reply act=noop 224.0.0.5:0->10.89.3.36:0(0.0.0.0:0)
misc=0 policy_id=0 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=0000009b tos=ff/ff app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000—
session info: proto=89 proto_state=00 duration=12998 expire=590 timeout=0 flags=00000000 socktype=0 sockport=0 av_idx=0 use=3
origin-shaper=
reply-shaper=
per_ip_shaper=
class_id=0 ha_id=0 policy_dir=0 tunnel=/ vlan_cos=255/255
state=local nds npu
statistic(bytes/packets/allow_err): org=96432/1383/1 reply=0/0/0 tuples=2
tx speed(Bps/kbps): 6/0 rx speed(Bps/kbps): 0/0
orgin->sink: org out->post, reply pre->in dev=0->19/19->0 gwy=0.0.0.0/0.0.0.0
hook=out dir=org act=noop 136.136.136.24:0->224.0.0.5:0(0.0.0.0:0)
hook=in dir=reply act=noop 224.0.0.5:0->136.136.136.24:0(0.0.0.0:0)
misc=0 policy_id=0 pol_uuid_idx=0 auth_info=0 chk_client_info=0 vd=0
serial=0000009d tos=ff/ff app_list=0 app=0 url_cat=0
rpdb_link_id=00000000 ngfwid=n/a
npu_state=00000000—
Alex Lim
Alex Lim is a certified IT Technical Support Architect with over 15 years of experience in designing, implementing, and troubleshooting complex IT systems and networks. He has worked for leading IT companies, such as Microsoft, IBM, and Cisco, providing technical support and solutions to clients across various industries and sectors. Alex has a bachelor’s degree in computer science from the National University of Singapore and a master’s degree in information security from the Massachusetts Institute of Technology. He is also the author of several best-selling books on IT technical support, such as The IT Technical Support Handbook and Troubleshooting IT Systems and Networks. Alex lives in Bandar, Johore, Malaysia with his wife and two chilrdren. You can reach him at [email protected] or follow him on Website | Twitter | Facebook
