Fortinet FortiLog-400 User Manual
Page 96
96
05-16000-0082-20050115
Fortinet Inc.
CLI commands
FortiLog CLI reference
set alertmail device enable add levelnum
{emergency | alert | critical | error | warning |
notification | information}
Set the level to monitor before sending an alert message. The FortiLog
unit sends alert email for all messages at and above the logging severity
level you set.
set alertmail device enable add eventnum
{1 | 5 | 10 | 20 | 50 | 100 | 500 | 1000}
Set the number of selected events that occur before the FortiLog unit
sends an alert message. Use this setting in conjunction with the setting
below.
set alertmail device enable add leveltime
{0.5 | 1.0 | 3.0 | 6.0 |12.0 | 24.0 | 72.0 | 168.0}
Set the wait time for the number of events to occur within before sending
an alert email for the specified level log messages. Use this setting in
conjunction with the setting above.
set alertmail device enable add leveldevice
{all | per}
Set level setting to monitor each device separately or as a group.
set alertmail device enable add attackalert
{enable | disable}
Enable or disable the monitoring of specific attack types.
set alertmail device enable add attackany
{any | some}
Set the FortiLog to monitor for any attack types or specific attacks. Use in
conjunction with the next command.
set alertmail device enable add attackeywords
<keyword1 | keyword2}
Set the attack types the Fortilog should monitor for in the device logs. Use
in conjunction with the command above.
set alertmail device enable add attacknum
{1 | 5 | 10 | 20 | 50 | 100 | 500 | 1000}
Set the number of attack events that occur before the FortiLog unit sends
an alert message. Use this setting in conjunction with the setting below.
set alertmail device enable add attacktime
{0.5 | 1.0 | 3.0 | 6.0 |12.0 | 24.0 | 72.0 | 168.0}
Set the wait time for the number of attack events to occur within before
sending an alert email for the specified level log messages. Use this
setting in conjunction with the setting above.
set alertmail device enable add attackdevice
{all | per}
Set level setting to monitor each device separately or as a group.
set alertmail device enable add attacksingle
{y | n}
Set to the FortiLog unit send and alert email only when the defined attack
settings originate from a singe source IP.
set alertmail device enable add virusalert
{enable | disable}
Enable or disable the monitoring of specific virus types.
set alertmail device enable add virusany
{any | some}
Set the FortiLog to monitor for any virus types or specific attacks. Use in
conjunction with the next command.
set alertmail device enable add viruskeywords
<keyword1 | keyword2}
Set the virus types the Fortilog should monitor for in the device logs. Use
in conjunction with the command above.
set alertmail device enable add virusnum
{1 | 5 | 10 | 20 | 50 | 100 | 500 | 1000}
Set the number of virus events that occur before the FortiLog unit sends
an alert message. Use this setting in conjunction with the setting below.
set alertmail device enable add virustime
{0.5 | 1.0 | 3.0 | 6.0 |12.0 | 24.0 | 72.0 | 168.0}
Set the wait time for the number of virus events to occur within before
sending an alert email for the specified level log messages. Use this
setting in conjunction with the setting above.
set alertmail device enable add virusdevice
{all | per}
Set level setting to monitor each device separately or as a group.
set alertmail device enable add virussingle
{y | n}
Set to the FortiLog unit send and alert email only when the defined virus
settings originate from a singe source IP.
set alertmail device enable add devicemailaddr
<string>
Set the email addresses of the recipients to receive the alert warning
messages.