Config FortiGate to point log to FortiAnalyzer

NOTE:
By default FortiAnalyzerVM eval in VMware ESXi is for 15d
FortiGateVM in VMware ESXi  is for 75d, in VMware Workstation is 15d
INFO:
-FortiGateVM ip: 10.0.0.241
-FortiAnalyzerVM ip: 10.0.0.243

FortiGate:

config log fortianalyzer setting
set status enable
set server 10.0.0.243
set upload-option realtime
end
FortiAnalyzer:
config system interface
edit “port1”
set ip 10.0.0.243 255.255.255.0
set allowaccess ping https ssh
next
edit “port2”
next
edit “port3”
next
edit “port4”
next
end
In web browser go to https:10.0.0.243
L: admin
P:
click Add on Device Manager/Unregistered Devices/Device Name
Image
Image
Image
To check analysis using FortiView
Image
To check Report
You can check the report in HTML or PDF format
Image
Follow this to enable secure log encryption between FortiGate and FortiAnalyzer
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s