Technical Note: How to configure logging to memory in FortiOS v4.0

cborgato_FTNT · ‎04-07-2009

Description

Logging can be enabled using the GUI or the CLI. For the purposes of this document only the steps required using the GUI will be shown.

Please refer to the related KB article if a more recent firmware version is being used.

Scope

This article covers the steps required in three sections in order to enable and configure logging. As a final step an example is shown of CLI command that can be used to test this setup.

1. How first to enable logging to memory.
2. How to configure Event logging.
3. Steps needed to configure logging of Protection Profile.
4. Brief verification.

Solution

Enable logging to memory

1. Log into FortiGate.

2. Go to Log&Report > Log Config menu.

3. Expand the blue arrow next to memory and select check box to Memory.

4. Select a Minimum Log Level from the list.

5. Select Apply.

Setup Event logging

1. Log into FortiGate.

2. Go to Log&Report > Log Config > Event Log menu.

3. Enable and select what types of events will be recorded from the list.

Logging Protection Profile events

In this profile define what events will trigger logs. In Firewall > Protection Profile, enable the desired events that will trigger a memory log message. The log settings are at the bottom of Profile sub menus.

Edit the Protection Profile that will be used. Firewall > Protection Profile. Click on the small note pad icon to edit.

Verification

In order to generate log events for the settings now made a CLI command can be used. Console in the GUI can be used in order to perform this in simple steps.

CLI command:

#diagnose log test

When log settings have been correctly configured, test log messages should be shown in Log & Report, Log Access menu.

Related Articles

Technical Note: How to configure logging to memory in FortiOS v5.0