Fortilog settings – Fortinet 100A User Manual

Log & Report

Log Setting options

FortiGate-100A Administration Guide

01-28007-0068-20041203

341

Figure 183:Log setting options for all log locations

To configure Log Setting

1

Go to Log&Report > Log Config > Log Setting.

2

Select the check box to enable logging to a location.

3

Select the blue arrow beside the location.
The setting options appear.

4

Enter the settings the logging location requires.

5

Repeat steps 2 through 8 to configure other logging locations.

6

Select Apply.

FortiLog settings

Table 31

describes the FortiGate logging severity levels.

Memory

The FortiGate system memory. The FortiGate system memory has a limited

capacity and only displays the most recent log entries. Traffic and content

logs cannot be stored in the memory buffer. When the memory is full, the

FortiGate unit begins to overwrite the oldest messages. All log entries are

deleted when the FortiGate unit restarts.

Syslog

A remote computer running a syslog server.

WebTrends

A remote computer running a NetIQ WebTrends firewall reporting server.

FortiGate log formats comply with WebTrends Enhanced Log Format (WELF)

and are compatible with NetIQ WebTrends Security Reporting Center 2.0 and

Firewall Suite 4.1.

IP:

The IP address of the FortiLog unit that manages the logs.

Level:

The FortiGate unit logs all messages at and above the logging severity

level you select. For example, if you select Error, the unit logs Error,

Critical, Alert and Emergency level messages. See

Table 31, “Logging

severity levels,” on page 342

.

Enable encryption

Select to enable encryption of file transfer.

Local ID:

The identifier for the FortiGate unit. This must match the device name

assigned to this unit on the FortiLog unit.

Pre-shared key

The pre-shared key used for encryption.