Fortinet black logo

Administration Guide

Home FortiAnalyzer BigData 7.0.3 Administration Guide
7.0.3
7.4.0
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.6
7.0.5
7.0.4
7.0.3
7.0.1
6.4.6
6.4.5
6.2.5
6.2.1

Configure FortiAnalyzer-BigData Hyperscale Syslog Ingestion

Configure FortiAnalyzer-BigData Hyperscale Syslog Ingestion

By default, the received hyperscale Syslog messages are parsed and persisted in the Security Event Manager. You can configure FortiAnalyzer-BigData to forward the messages to an external Syslog UDP server:

To configure Hyperscale Syslog Ingestion:
  1. Go to Cluster Manager > Services > Core.
  2. Click the Configuration tab and go to the Hyperscale Syslog Ingestion section.
  3. Toggle Enable Persisting to enable or disable persisting the logs into the Security Event Manger. This is enabled by default.
  4. Toggle Enable Forwarding to enable or disable forwarding to an external Syslog UDP server. This is disabled by default.
  5. When Enable Forwarding is on, configure the destination Syslog UDP server’s IP and port.
  6. Click Save and follow the prompts to apply the configuration.

Previous
Next

Configure FortiAnalyzer-BigData Hyperscale Syslog Ingestion

By default, the received hyperscale Syslog messages are parsed and persisted in the Security Event Manager. You can configure FortiAnalyzer-BigData to forward the messages to an external Syslog UDP server:

To configure Hyperscale Syslog Ingestion:
  1. Go to Cluster Manager > Services > Core.
  2. Click the Configuration tab and go to the Hyperscale Syslog Ingestion section.
  3. Toggle Enable Persisting to enable or disable persisting the logs into the Security Event Manger. This is enabled by default.
  4. Toggle Enable Forwarding to enable or disable forwarding to an external Syslog UDP server. This is disabled by default.
  5. When Enable Forwarding is on, configure the destination Syslog UDP server’s IP and port.
  6. Click Save and follow the prompts to apply the configuration.

Previous
Next