Fortimanager

FORTIMANAGER

The FortiManager family delivers the versatility you need to effectively manage your Fortinet- based security infrastructure.

TO FORWARD FORTIMANAGER 4.3.X LOGS

Log in to FortiManager 4.3.x using CLI:

config fmsystem locallog syslogd setting

set server <IP address> ##Address of Log Collector

set severity <emergency | alert | critical | error | warning | notification | information | debug> ##Least severity level to log

set status <enable | disable>

set facility <facility> ##Which facility for remote syslog.

set port <port> ##Port that server listens at

end

TO FORWARD FORTIMANAGER 5.0.X UP TO 5.0.6 LOGS

Log in to FortiManager 5.0.x up to 5.0.6 using CLI:

config system locallog syslogd setting

set server <IP address> ##Address of Log Collector

set severity <emergency | alert | critical | error | warning | notification | information | debug> ##Least severity level to log

set status <enable | disable>

set facility <facility> ##Which facility for remote syslog.

set port <port> ##Port that server listens at.

End

TO FORWARD FORTIMANAGER 5.0.7 AND ABOVE VERSION LOGS

Log in to FortiManager 5.0.7 using web interface:

1. Go to System Settings > Advanced > Syslog Server

The Syslog server can also be defined using CLI:

config system syslog

edit <server name>

set ip <Log Collector-IP>

end

Enable sending FortiManager local logs

This can only be configured using CLI:

config system locallog syslogd setting

set syslog-name <Remote syslog server name,defined at previous step>

set severity <emergency | alert | critical | error | warning | notification | information | debug> ##Least severity level to log

set status <enable | disable>

set facility <facility> ##Which facility for remote syslog.

set port <port> ##Port that server listens at (514)

end

PreviousLog Forwarding (on-prem) - How ToNextFortinet

Last updated