Difference between revisions of "FortiManager & FortiAnalyzer"

From Tech-Wiki
Jump to: navigation, search
(Created page with "Category:Fortinet Replace a device in FortiManager in case of failure of an active unit. (Remember to delete the unregistered device first) execute device replace sn <de...")
 
Line 11: Line 11:
 
Archiving logs from FortiAnalyser to external server. Then, enable ‘Delete log file older than’ in System Settings | File Management
 
Archiving logs from FortiAnalyser to external server. Then, enable ‘Delete log file older than’ in System Settings | File Management
 
  execute backup logs all ftp|sftp|scp <server> <username> <password>
 
  execute backup logs all ftp|sftp|scp <server> <username> <password>
 +
 +
Enable syslog forwarding
 +
  config log syslogd setting
 +
    set status enable
 +
    set server 192.168.1.50
 +
    set reliable disable    (UDP)
 +
    set port 514
 +
    set csv disable
 +
    set facility alert
 +
    set source-ip 192.168.1.254
 +
  end

Revision as of 02:58, 12 October 2016


Replace a device in FortiManager in case of failure of an active unit. (Remember to delete the unregistered device first)

execute device replace sn <device_name> <serial>
execute fgfm reclaim-dev-tunnel

Enable scheduled scripts in FortiManager

config system admin setting
  set show_schedule_script enable

Archiving logs from FortiAnalyser to external server. Then, enable ‘Delete log file older than’ in System Settings | File Management

execute backup logs all ftp|sftp|scp <server> <username> <password>

Enable syslog forwarding

 config log syslogd setting
   set status enable
   set server 192.168.1.50
   set reliable disable    (UDP)
   set port 514
   set csv disable
   set facility alert
   set source-ip 192.168.1.254
 end