config system syslog2 settings
Use this command to configure a general remote server which will receive syslogs. FortiNDR system will send logs with specified type and severity (only for ndr
log types ) to this remote server.
Syntax
config system syslog2 settings set ipaddr <ipv4mask> set port <int> set status {enable, disable} set type {event, malware, ndr} set ndr-severity {low, medium, high, critical} end
Variable |
Description |
Default |
---|---|---|
|
Profile name |
|
|
The IP address of the remote server. Only IPv4 is supported. |
|
|
The port number of the remote server for syslog services. |
|
|
Enable or disable sending logs to this remote server. |
|
|
FortiNDR supports to three types of logs, including Multiple choices are supported. |
|
|
Filtering by severity is supported when sending |
|