Fortinet black logo

Administration Guide

Viewing logs in FortiAnalyzer

Copy Link
Copy Doc ID af12b5b0-1c45-11ea-9384-00505692583a:959206
Download PDF

Viewing logs in FortiAnalyzer

To view FortiSandbox logs in your FortiAnalyzer:

  1. Log into your FortiAnalyzer.
  2. Select FortiSandbox from the Select an ADOM prompt.
  3. Click the Log View tile.

The following options are available:

Add Filter

Enter a search term to search the log messages. You can also right-click an entry in one of the columns and select to add a search filter. Select GO in the toolbar to apply the filter. Not all columns support the search feature.

Device

Select the device in the dropdown list.

Time Period

Select a time period from the dropdown list. Options include: Last 30 mins, Last 1 hour, Last 4 hours, Last 12 hours, Last 1 day, Last 7 days, Last N hours, Last N days, or Custom.

GO

Select to apply the time period and limit to the displayed log entries. A progress bar is displayed in the lower toolbar.

Column Settings

Select specific columns to be displayed. You can also reset the columns to its default.

Tools

The Tools button provides options for changing the manner in which the logs are displayed, and search and column options.

Real-time Log

FortiSandbox does not support Real-time Log.

Display Raw

Select to change view from formatted display to raw log display.

Download

Select to download logs. A download dialog box is displayed. Select the log file format, compress with gzip, the pages to include and select Apply to save the log file to the management computer.

This option is only available when viewing logs in formatted display.

Case Sensitive Search

Select to enable case sensitive search.

Chart Builder

Select to create a custom chart.

Display Details button

Detailed information on the log message selected in the log message list. The item is not available when viewing raw logs.

Log Details are only displayed when enabled in the Tools menu.

Search Scope

Select the maximum number of log entries to be displayed from the dropdown list. Options include: 1000, 5000, 10000, 50000, or All.

This page displays the following information:

Logs

The columns and information shown in the log message list will vary depending on the selected log type and the view settings. Right-click on various columns to add search filters to refine the logs displayed. When a search filter is applied, the value is highlighted in the table and log details.

Status Bar

Displays the log view status as a percentage.

Pagination

Adjust the number of logs that are listed per page and browse through the pages.

Viewing logs in FortiAnalyzer

To view FortiSandbox logs in your FortiAnalyzer:

  1. Log into your FortiAnalyzer.
  2. Select FortiSandbox from the Select an ADOM prompt.
  3. Click the Log View tile.

The following options are available:

Add Filter

Enter a search term to search the log messages. You can also right-click an entry in one of the columns and select to add a search filter. Select GO in the toolbar to apply the filter. Not all columns support the search feature.

Device

Select the device in the dropdown list.

Time Period

Select a time period from the dropdown list. Options include: Last 30 mins, Last 1 hour, Last 4 hours, Last 12 hours, Last 1 day, Last 7 days, Last N hours, Last N days, or Custom.

GO

Select to apply the time period and limit to the displayed log entries. A progress bar is displayed in the lower toolbar.

Column Settings

Select specific columns to be displayed. You can also reset the columns to its default.

Tools

The Tools button provides options for changing the manner in which the logs are displayed, and search and column options.

Real-time Log

FortiSandbox does not support Real-time Log.

Display Raw

Select to change view from formatted display to raw log display.

Download

Select to download logs. A download dialog box is displayed. Select the log file format, compress with gzip, the pages to include and select Apply to save the log file to the management computer.

This option is only available when viewing logs in formatted display.

Case Sensitive Search

Select to enable case sensitive search.

Chart Builder

Select to create a custom chart.

Display Details button

Detailed information on the log message selected in the log message list. The item is not available when viewing raw logs.

Log Details are only displayed when enabled in the Tools menu.

Search Scope

Select the maximum number of log entries to be displayed from the dropdown list. Options include: 1000, 5000, 10000, 50000, or All.

This page displays the following information:

Logs

The columns and information shown in the log message list will vary depending on the selected log type and the view settings. Right-click on various columns to add search filters to refine the logs displayed. When a search filter is applied, the value is highlighted in the table and log details.

Status Bar

Displays the log view status as a percentage.

Pagination

Adjust the number of logs that are listed per page and browse through the pages.