Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Shilpa1
Staff
Staff

Created on ‎08-11-2023 06:07 AM

Article Id 268468

Troubleshooting Tip: Unable to set source IP under 'config log fortianalyzer setting'

Description This article describes a scenario under which the command 'set source ip' is not visible within the configuration settings for FortiAnalyzer logging (config log FortiAnalyzer setting).
Scope FortiGate.
Solution

When the 'set ha-direct' feature is enabled under 'config system ha', FortiGate uses the HA management interface to send logs to FortiAnalyzer.

 

If the intention is to transmit logs using a specific source IP address, it becomes necessary to disable the 'set ha-direct' feature.

 

Additional relevant links:

 

Example screenshots:

 
 
 

set ha-direct enableset ha-direct enable

 

set ha-direct enableset ha-direct enable
set ha-direct enableset ha-direct enable
set ha-direct disableset ha-direct disable
set ha-direct disableset ha-direct disable
1109
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.