<div>
1. the first is for flow debugging, which is used to see in real-time how packets are handled by the firewall, while the second is for the &quot;diag sys sess list&quot;. Both are the filters to limit which entries/packets are displayed.<br />
<br />
2. This command starts the actual flow debugging, and limits the processing to 100 flows.
</div>


1. the first is for flow debugging, which is used to see in real-time how packets are handled by the firewall, while the second is for the "diag sys sess list". Both are the filters to limit which entries/packets are displayed.

2. This command starts the actual flow debugging, and limits the processing to 100 flows.

<div>
What's the difference between &quot;diagnose debug flow&quot; and &nbsp;&quot;diagnose sys session&quot; ? Does former is real time while the latter is not ?<br />
<br />
Thx
</div>


What's the difference between "diagnose debug flow" and  "diagnose sys session" ? Does former is real time while the latter is not ?

Thx

<div>
<div class="content wysiwyg-content">
1. What's the difference between the two commands below ?<br />
<br />
&nbsp; &nbsp; &nbsp; &nbsp;diagnose debug flow filter addr 192.168.99.121<br />
&nbsp; &nbsp; &nbsp; &nbsp;diagnose sys session filter src 192.168.99.121<br />
<br />
2. What the meaning for the command line below ?<br />
&nbsp; &nbsp; &nbsp; &nbsp;diagnose debug flow trace start 100
</div>
</div>


1. What's the difference between the two commands below ?

       diagnose debug flow filter addr 192.168.99.121
       diagnose sys session filter src 192.168.99.121

2. What the meaning for the command line below ?
       diagnose debug flow trace start 100

Fortigate CLI

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.