eG Help

The security policy of your organization is a set of definitions to protect your computer network and the information that goes through it. The Fortigate firewall denies all packets that are not specifically allowed. When you add a policy to your firewall device configuration file, you add a set of rules that tell the firewall device to allow or deny traffic based upon factors such as source and destination of the packet or the TCP/IP port or protocol used for the packet.

A policy can also give the firewall device more instructions on how to handle the packet. For example, you can define logging and notification settings that apply to the traffic, or use NAT (Network Address Translation) to change the source IP address and port of network traffic.

For each firewall policy that is configured, this test monitors the number of packets and the amount of data traffic through the firewall. This way, this test helps the administrators in identifying the firewall policy through which the maximum number of packets/data was tansmitted/received.

Outputs of the test : One set of results for each security policy created on the target firewall monitored.

Measurement	Description	Measurement Unit	Interpretation
Packets_transfer	Indicates the number of packets processed (transmitted/received) for this security policy.	Number	Comparing the values of these measures across the policies helps you in identifying the policy through which the number of packets transmitted/received was the maximum at any point of time.
Data_transfer	Indicates the amount of data processed (transmitted/received) for this security policy.	MB	Comparing the values of these measures across the policies helps you in identifying the policy through which the data traffic was the maximum at any point of time.