Security Policy Match
Security policy match troubleshooting fields in the web interface.
Select the policy match test to execute.
(Panorama only) Select device
Select device/VSYS to specify which devices and virtual systems for which to test the policy functionality. Admin and device group & Template users are presented with the devices and virtual systems based on their access domain. Additionally, you can select the Panorama management server as a device.
(Panorama only) Selected Devices
Lists the devices and virtual systems selected for testing.
Enter the zone where the traffic originated.
Select the destination zone of the traffic.
Enter the IP address where the traffic originated.
Enter the destination IP address of the traffic.
Enter the specific destination port for which traffic is intended.
Enter the user from which the traffic originated.
Enter the IP protocol used for routing. Can be 0 to 255.
Show all potential match rules until first allow rule
Enable this option to show all potential rule matches until the first matched rule result. Disable (clear) to return only the first matched rule in the test results.
Select the application traffic you want to test.
Select the traffic category you want to test.
(Firewall only) Check HIP mask
Select to check the security status of the end device that is accessing your network.
Select to view the Result Details of the executed test.
(Panorama only) When executing the test for multiple managed devices, the Results display the following information for each device tested:
Policy Based Forwarding Policy Match
PBF policy match troubleshooting fields in the web interface. ...
Decryption/SSL Policy Match
Decryption/SSL policy match troubleshooting fields in the web interface. ...
Authentication Policy Match
Authentication policy match troubleshooting fields in the web interface. ...
Troubleshoot Policy Rule Traffic Matches
Test the traffic policy match of the running firewall configuration. ...