Fortinet white logo
Fortinet white logo

CLI Reference

log fortianalyzer setting

Global FortiAnalyzer settings.

  config log fortianalyzer setting
      Description: Global FortiAnalyzer settings.
      set status [enable|disable]
      set ips-archive [enable|disable]
      set server {string}
      set certificate-verification [enable|disable]
      set serial <name1>, <name2>, ...
      set access-config [enable|disable]
      set hmac-algorithm [sha256|sha1]
      set enc-algorithm [high-medium|high|...]
      set ssl-min-proto-version [default|SSLv3|...]
      set conn-timeout {integer}
      set monitor-keepalive-period {integer}
      set monitor-failure-retry-period {integer}
      set certificate {string}
      set source-ip {string}
      set upload-option [store-and-upload|realtime|...]
      set upload-interval [daily|weekly|...]
      set upload-day {user}
      set upload-time {user}
      set reliable [enable|disable]
      set priority [default|low]
      set max-log-rate {integer}
      set interface-select-method [auto|sdwan|...]
      set interface {string}
  end

config log fortianalyzer setting

Parameter Name Description Type Size
status Enable/disable logging to FortiAnalyzer.
enable: Enable logging to FortiAnalyzer.
disable: Disable logging to FortiAnalyzer.
option -
ips-archive Enable/disable IPS packet archive logging.
enable: Enable IPS packet archive logging.
disable: Disable IPS packet archive logging.
option -
server The remote FortiAnalyzer. string Maximum length: 63
certificate-verification Enable/disable identity verification of FortiAnalyzer by use of certificate.
enable: Enable identity verification of FortiAnalyzer by use of certificate.
disable: Disable identity verification of FortiAnalyzer by use of certificate.
option -
serial <name> Serial numbers of the FortiAnalyzer.
Serial Number.
string Maximum length: 79
access-config Enable/disable FortiAnalyzer access to configuration and data.
enable: Enable FortiAnalyzer access to configuration and data.
disable: Disable FortiAnalyzer access to configuration and data.
option -
hmac-algorithm FortiAnalyzer IPsec tunnel HMAC algorithm.
sha256: Use SHA256 as HMAC algorithm.
sha1: Step down to SHA1 as the HMAC algorithm.
option -
enc-algorithm Configure the level of SSL protection for secure communication with FortiAnalyzer.
high-medium: Encrypt logs using high and medium encryption algorithms.
high: Encrypt logs using high encryption algorithms.
low: Encrypt logs using all encryption algorithms.
option -
ssl-min-proto-version Minimum supported protocol version for SSL/TLS connections (default is to follow system global setting).
default: Follow system global setting.
SSLv3: SSLv3.
TLSv1: TLSv1.
TLSv1-1: TLSv1.1.
TLSv1-2: TLSv1.2.
option -
conn-timeout FortiAnalyzer connection time-out in seconds (for status and log buffer). integer Minimum value: 1 Maximum value: 3600
monitor-keepalive-period Time between OFTP keepalives in seconds (for status and log buffer). integer Minimum value: 1 Maximum value: 120
monitor-failure-retry-period Time between FortiAnalyzer connection retries in seconds (for status and log buffer). integer Minimum value: 1 Maximum value: 86400
certificate Certificate used to communicate with FortiAnalyzer. string Maximum length: 35
source-ip Source IPv4 or IPv6 address used to communicate with FortiAnalyzer. string Maximum length: 63
upload-option Enable/disable logging to hard disk and then uploading to FortiAnalyzer.
store-and-upload: Log to hard disk and then upload to FortiAnalyzer.
realtime: Log directly to FortiAnalyzer in real time.
1-minute: Log directly to FortiAnalyzer at most every 1 minute.
5-minute: Log directly to FortiAnalyzer at most every 5 minutes.
option -
upload-interval Frequency to upload log files to FortiAnalyzer.
daily: Upload log files to FortiAnalyzer once a day.
weekly: Upload log files to FortiAnalyzer once a week.
monthly: Upload log files to FortiAnalyzer once a month.
option -
upload-day Day of week (month) to upload logs. user Not Specified
upload-time Time to upload logs (hh:mm). user Not Specified
reliable Enable/disable reliable logging to FortiAnalyzer.
enable: Enable reliable logging to FortiAnalyzer.
disable: Disable reliable logging to FortiAnalyzer.
option -
priority Set log transmission priority.
default: Set FortiAnalyzer log transmission priority to default.
low: Set FortiAnalyzer log transmission priority to low.
option -
max-log-rate FortiAnalyzer maximum log rate in MBps (0 = unlimited). integer Minimum value: 0 Maximum value: 100000
interface-select-method Specify how to select outgoing interface to reach server.
auto: Set outgoing interface automatically.
sdwan: Set outgoing interface by SD-WAN or policy routing rules.
specify: Set outgoing interface manually.
option -
interface Specify outgoing interface to reach server. string Maximum length: 15

log fortianalyzer setting

Global FortiAnalyzer settings.

  config log fortianalyzer setting
      Description: Global FortiAnalyzer settings.
      set status [enable|disable]
      set ips-archive [enable|disable]
      set server {string}
      set certificate-verification [enable|disable]
      set serial <name1>, <name2>, ...
      set access-config [enable|disable]
      set hmac-algorithm [sha256|sha1]
      set enc-algorithm [high-medium|high|...]
      set ssl-min-proto-version [default|SSLv3|...]
      set conn-timeout {integer}
      set monitor-keepalive-period {integer}
      set monitor-failure-retry-period {integer}
      set certificate {string}
      set source-ip {string}
      set upload-option [store-and-upload|realtime|...]
      set upload-interval [daily|weekly|...]
      set upload-day {user}
      set upload-time {user}
      set reliable [enable|disable]
      set priority [default|low]
      set max-log-rate {integer}
      set interface-select-method [auto|sdwan|...]
      set interface {string}
  end

config log fortianalyzer setting

Parameter Name Description Type Size
status Enable/disable logging to FortiAnalyzer.
enable: Enable logging to FortiAnalyzer.
disable: Disable logging to FortiAnalyzer.
option -
ips-archive Enable/disable IPS packet archive logging.
enable: Enable IPS packet archive logging.
disable: Disable IPS packet archive logging.
option -
server The remote FortiAnalyzer. string Maximum length: 63
certificate-verification Enable/disable identity verification of FortiAnalyzer by use of certificate.
enable: Enable identity verification of FortiAnalyzer by use of certificate.
disable: Disable identity verification of FortiAnalyzer by use of certificate.
option -
serial <name> Serial numbers of the FortiAnalyzer.
Serial Number.
string Maximum length: 79
access-config Enable/disable FortiAnalyzer access to configuration and data.
enable: Enable FortiAnalyzer access to configuration and data.
disable: Disable FortiAnalyzer access to configuration and data.
option -
hmac-algorithm FortiAnalyzer IPsec tunnel HMAC algorithm.
sha256: Use SHA256 as HMAC algorithm.
sha1: Step down to SHA1 as the HMAC algorithm.
option -
enc-algorithm Configure the level of SSL protection for secure communication with FortiAnalyzer.
high-medium: Encrypt logs using high and medium encryption algorithms.
high: Encrypt logs using high encryption algorithms.
low: Encrypt logs using all encryption algorithms.
option -
ssl-min-proto-version Minimum supported protocol version for SSL/TLS connections (default is to follow system global setting).
default: Follow system global setting.
SSLv3: SSLv3.
TLSv1: TLSv1.
TLSv1-1: TLSv1.1.
TLSv1-2: TLSv1.2.
option -
conn-timeout FortiAnalyzer connection time-out in seconds (for status and log buffer). integer Minimum value: 1 Maximum value: 3600
monitor-keepalive-period Time between OFTP keepalives in seconds (for status and log buffer). integer Minimum value: 1 Maximum value: 120
monitor-failure-retry-period Time between FortiAnalyzer connection retries in seconds (for status and log buffer). integer Minimum value: 1 Maximum value: 86400
certificate Certificate used to communicate with FortiAnalyzer. string Maximum length: 35
source-ip Source IPv4 or IPv6 address used to communicate with FortiAnalyzer. string Maximum length: 63
upload-option Enable/disable logging to hard disk and then uploading to FortiAnalyzer.
store-and-upload: Log to hard disk and then upload to FortiAnalyzer.
realtime: Log directly to FortiAnalyzer in real time.
1-minute: Log directly to FortiAnalyzer at most every 1 minute.
5-minute: Log directly to FortiAnalyzer at most every 5 minutes.
option -
upload-interval Frequency to upload log files to FortiAnalyzer.
daily: Upload log files to FortiAnalyzer once a day.
weekly: Upload log files to FortiAnalyzer once a week.
monthly: Upload log files to FortiAnalyzer once a month.
option -
upload-day Day of week (month) to upload logs. user Not Specified
upload-time Time to upload logs (hh:mm). user Not Specified
reliable Enable/disable reliable logging to FortiAnalyzer.
enable: Enable reliable logging to FortiAnalyzer.
disable: Disable reliable logging to FortiAnalyzer.
option -
priority Set log transmission priority.
default: Set FortiAnalyzer log transmission priority to default.
low: Set FortiAnalyzer log transmission priority to low.
option -
max-log-rate FortiAnalyzer maximum log rate in MBps (0 = unlimited). integer Minimum value: 0 Maximum value: 100000
interface-select-method Specify how to select outgoing interface to reach server.
auto: Set outgoing interface automatically.
sdwan: Set outgoing interface by SD-WAN or policy routing rules.
specify: Set outgoing interface manually.
option -
interface Specify outgoing interface to reach server. string Maximum length: 15