Configuring the Syslog Service on Fortinet devices
To configure the Syslog service in your Fortinet devices follow the steps given below:
- Login to the Fortinet device as an administrator.
- Define the Syslog Servers. It can be defined in two different ways,
- Use the following CLI commands to send Fortinet logs to the Eventlog Analyzer server.
Copy to Clipboard
config system locallog syslogd setting
set severity debug
set facility local7
set status enable
set syslog-name <syslog server name set in above step>
end
- Severity and Facility can be changed as per the requirements.
Once you have completed the configuration steps, the logs from your Fortinet device will be automatically forwarded to the EventLog Analyzer server.
For more details refer the source: Link.