DescriptionLogging can be enabled using the GUI or the CLI. For the purposes of this document only the steps required using the GUI will be shown.
Please refer to the related KB article if a more recent firmware version is being used.
ScopeThis article covers the steps required in three sections in order to enable and configure logging. As a final step an example is shown of CLI command that can be used to test this setup.
1. How first to enable logging to memory.
2. How to configure Event logging.
3. Steps needed to configure logging of Protection Profile.
4. Brief verification.
SolutionEnable logging to memory
1. Log into FortiGate.
2. Go to Log&Report > Log Config menu.
3. Expand the blue arrow next to memory and select check box to Memory.
4. Select a Minimum Log Level from the list.
5. Select Apply.
Setup Event logging
1. Log into FortiGate.
2. Go to Log&Report > Log Config > Event Log menu.
3. Enable and select what types of events will be recorded from the list.
Logging Protection Profile events
In this profile define what events will trigger logs. In Firewall > Protection Profile, enable the desired events that will trigger a memory log message. The log settings are at the bottom of Profile sub menus.
Edit the Protection Profile that will be used. Firewall > Protection Profile. Click on the small note pad icon to edit.
Verification
In order to generate log events for the settings now made a CLI command can be used. Console in the GUI can be used in order to perform this in simple steps.
CLI command:
#diagnose log test
When log settings have been correctly configured, test log messages should be shown in
Log & Report,
Log Access menu.
Related Articles
Technical Note: How to configure logging to memory in FortiOS v5.0