using forticloud to record log messages -...
TRANSCRIPT
1. Activating FortiCloud
2. Sending logs to FortiCloud
3. Enabling logging in your security policies
4. Results
You must register your FortiGate unit before you can activate FortiCloud.
Using FortiCloud to record log messagesThis example describes setting up FortiGate logging to FortiCloud, an online log retention service provided by Fortinet. It also describes how to use FortiCloud to view and access FortiGate traffic logs.
FortiGate
Internal Network
FortiCloud
Activating FortiCloudGo to System > Dashboard > Status.
In the FortiCloud section of the License Information widget, select the green Activate button.
Fill in the required information to create a new FortiCloud account.
Sending logs to FortiCloudGo to Log & Report > Log Config > Log Setting.
Enable Send Logs to FortiCloud and adjust the Event Logging settings as required.
Select Test Connectivity to verify the connection between the FortiGate unit and your FortiCloud account.
Set the GUI Preferences to Display Logs from FortiCloud, to easily view your logs.
Enabling logging in the security policiesGo to Policy > Policy > Policy. Edit the security policies that control the traffic you wish to log.
Under Logging Options, select either Log Security Events or Log all Sessions, depending on your needs.
In most cases, Log Security Events will provide sufficient information in the traffic logs. Log all Sessions can be useful for more detailed traffic analysis but also has a greater effect on system performance and requires more memory for storage.
ResultsGo to System > Dashboard > Status.
In the FortiCloud section of the License Information widget, select Launch Portal.
From the portal, you can view the log data and reports.
You can access your FortiCloud account at any time by going to www.forticloud.com.
Daily Summary reports can also be found through the FortiGate unit by going to Log & Report > Report > FortiCloud.
You can also configure your FortiCloud account to have these reports emailed to you.
Logs viewed through the GUI will also now read Log location: FortiCloud in the upper right corner.