User Tools

Site Tools


syslog_fortigate

How to configure syslog on fortigate cmdline

Connect to the console :

config log syslogd setting
set status enable
set server [FQDN Syslog Server or IP]
set reliable [Activate TCP-514 or UDP-514 which means UDP is default]
set port [Standard 514]
set csv [enable | disable]
set facility [By Standard local7]
set source-ip [Source IP of FortiGate; By Standard 0.0.0.0]
end
show full-configuration

check « severity » is set to « information » to get FULL logs :

config log syslogd filter
get

config for work :

config log syslogd setting
    set status enable
    set server « 192.168.1.xx
    set reliable disable
    set port 30000
    set csv disable
    set facility local7 (if you want i think get all logs > set facility local0)
    set source-ip " 0.0.0.0"
end


Source : don't remember


- created date : 2019.08.05 -

syslog_fortigate.txt · Last modified: 2019/08/05 16:06 by admin