Log & report – Fortinet 100A User Manual

FortiGate-100A Administration Guide Version 2.80 MR7

FortiGate-100A Administration Guide

01-28007-0068-20041203

339

Log & Report

FortiGate units provide extensive logging capabilities for traffic, system and network
protection functions. You can set the severity level of the messages that are logged,
and you can choose the types of events that are logged.

All types of log messages except traffic and content can be saved in internal memory.

FortiGate units support external logging to a FortiLog unit, WebTrends and other
Syslog servers. For each log location you can configure log setting options including
addressing information, logging severity level and log format. Log filters define the
types of log messages saved to each location.

You can configure the FortiGate unit to send alert email to up to three recipients when
selected events occur. It is not necessary for an event to be logged to trigger an alert
email.

The FortiGate unit will collect and send log messages in alert emails according to the
level and time intervals you configure in the alert email options. All collected
messages are assembled in one alert email which is sent as soon the time interval is
reached for a message at or above the configured level.

For example, if you set the level as Alert and the time interval for Emergency and Alert
to 3 minutes, then all Alert and Emergency log messages collected are sent in a single
email every three minutes. Log filters define the types of log messages sent as alert
emails.

In the following example alert email, the alert email level is set to Alert. The two Alert
level messages collected since the last Alert interval are sent in a single email.