config system syslog fortianalyzer settings
Syntax
Use this command to configure a FortiAnalyzer remote server which will receive syslogs. FortiNDR system will send logs with specified type and severity (only for NDR type ) to this remote server.
config system syslog fortianalyzer settings set ipaddr <ipv4mask> set port <int> set status {enable, disable} set type {event, malware, ndr} set ndr-severity {low, medium, high, critical} end
Variable |
Description |
Default |
---|---|---|
|
Profile name |
|
|
The IP address of the remote server. Only IPv4 is supported. |
|
|
The port number of the remote server for syslog services. |
|
|
Enable or disable sending logs to this remote server. |
|
|
FortiNDR supports three types of logs: Multiple choices are supported. |
|
|
Filtering by severity is supported for sending |
|