Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Jonathan_Body_FTNT
Staff
Staff

Created on ‎06-21-2010 06:52 AM

Article Id 198271

Technical Note : FortiOS 4.0 MR2 Log Archiving Support

Description

This article explains how to enable the Log Archiving feature on the FortiGate in FortiOS 4.0 MR2 and provides a list of the hardware devices that support this feature.


Scope

FortiOS 4.0 MR2 and above


Solution
In FortiOS 4.0 MR2, FortiGate devices with local hard drives support:

1. Content archive.
2. DLP archive.
3. IPS Packet Log (PCAP).
4. Quarantine.

The Quarantine feature has been available since the FortiOS 4.0 GA release.
 
The FortiGate hardware platforms that support these features are shown in the following table.
Internal HDD (new) FG-51B, FG-60C, FWF-81CM
AMC FG-310B, FG-620B, FG-3016B, FG-3600A, FG-3040B, FG-3140B, FG-3810A, FG-3961B, FG-5001A
SDD FG-82C, FG-111C, FG-200B, FG-311B, FG-1240B
To configure archiving to the local hard disk use the CLI command:
config log disk filter
   set dlp-archive {enable | disable}
end
To configure the web based manager go to Log&Report>Log Config>Log Setting.

jbody_FD32601_FD32601-01.jpg

Configure DLP archive and enable DLP in the firewall policy so that the archives are seen on the disk.

jbody_FD32601_FD32601-02.jpg

To view the archives go to Log&Report>Archive Access>E-mail.

jbody_FD32601_FD32601-03.jpg

.

1038
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.