Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sjoshi
Staff
Staff

Created on ‎09-03-2022 11:30 AM Edited on ‎09-03-2022 11:30 AM By Community Manager

Article Id 222791

Technical Tip: Logs regarding port 9980 and local traffic

Description

 

This article explains why to observe local traffic logs to port 9980 from source and destination 127.0.0.1.

 

Scope

 

FortiOs.

 

Solution

 

The following logs are observed in local traffic logs.

 

 

Capture.PNG

 

 

TCP port 9980 is used for local traffic related to security fabric features and handles some internal rest API queries. These logs are normal, and it will not cause any issue.

 

To disable such logging of local traffic:

 

# config log setting
    set local-out disable
end


The address 127.0.0.1 will always be pointing to localhost, simply means the traffic will not go anywhere but looping inside the FortiGate itself.

Labels:
7157
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.