Adding a FortiGate unit
A FortiGate unit must be configured to send log messages to a FortiAnalyzer unit. Thisconfiguration can occur before or after the FortiAnalyzer unit’s configuration to receive those logs.
The steps to add a device vary according to the log settings you want, and to a
FortiAnalyzer unit’s configured response to an initial log connection attempt. For details,
see “Unregistered Device Options” in the FortiAnalyzer Administration Guide.
The following procedure uses the default options and configures a FortiGate unit running
FortiOS 4.0.
To send FortiGate unit logs to a FortiAnalyzer unit
1 On the FortiGate unit, go to Log&Report > Log Config > Log Setting.
2 Select the Expand Arrow for Remote Logging to expand the options.
3 Select a security level to log.
4 Select Static IP Address and enter the IP Address of the FortiAnalyzer unit.
5 Select Apply.
Log configuration
You must also configure the FortiGate unit for the type of data you want the FortiGate tolog and send to the FortiAnalyzer unit. There are two main locations for configuring the log
types:
• configure the event logs by going to Log&Report > Log Config > Event Log.
• enable feature logs by going to Firewall > Protection Profile, and editing a profile.
Wednesday, June 8, 2011
เก็บ log ด้วย FortiAnalyzer 100C
Posted by MRT IT Consult on 4:49 AM
| Leave a comment
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment