Configuring the report time period
This is part of the procedures for report generation. For information about the entire procedures, see “Configuring report profiles and generating reports” on page 676.
When configuring a report profile, you can select the time span of log messages from which to generate the report.
Figure 305:Time Period
- Select the arrow next to Time Period to expand the section, if closed.
- Select the time span option you want. This sets the range of log data to include in the report.
- Select the first option to chose a relative time, such as Today, Yesterday, Last N hours, and so on. If you select an option with an unspecified “N” value, another field appears. Enter the number of hours, days or weeks, as applicable.
- Select the second option to set a specific time range. Set the start date and hour in From date, and end date and hour in To date.
Configuring the report query selection
This is part of the procedures for report generation. For information about the entire procedures, see “Configuring report profiles and generating reports” on page 676.
When configuring a report profile, you can select one or more queries or query groups that define the subject matter of the report.
Each query group contains multiple individual queries, each of which correspond to a chart that will appear in the generated report. You can select all queries within the group by marking the check box of the query group, or you can expand the query group and individually select each query to include.
For example:
- If you want the report to include charts about spam, you might select both the Spam by Sender and Spam by Recipient query groups.
- If you want the report to specifically include only a chart about top virus senders by date, you might expand the query group Virus by Sender and select only the individual query Top Virus Sender By Date.
Figure 306:Query Selection
| GUI item | Description |
| Mail High Level | Select to include all top level and summary information for all queries, such as Top Client IP By Date. |
| Mail Statistics | Select to include information on daily, hourly or weekly email message statistics, such as Mail Stat Messages By Day. |
| GUI item | Description |
| Mail by Recipient | Select to include information on email messages by each recipient, such as Top Recipient By Date. |
| Mail by Sender | Select to include information on email messages by each sender, such as Top Sender By Date. |
| Spam by
Recipient |
Select to include information on spam by each recipient, such as Top Spam Recipient By Date. |
| Spam by Sender | Select to include information on spam by each sender, such as Top Spam Sender By Date. |
| Statistics | Select to include information on generalized email message statistics (less granular than Mail Statistics). |
| Total Summary | Select to include summary information, such as Total Sent And Received. |
| Virus by Sender | Select to include information on infected email messages by each sender, such as Top Virus Sender By Date. |
Virus by Recipient Select to include information on infected email messages by each recipient, such as Top Virus Recipient By Date.
Configuring the report schedule
This is part of the procedures for report generation. For information about the entire procedures, see “Configuring report profiles and generating reports” on page 676.
When configuring a report profile, you can select when the report will generate. Or, you can leave it unscheduled and generate it on demand. See “Generating a report manually” on page 682.
| GUI item | Description |
| Not Scheduled | Select if you do not want the FortiMail unit to generate the report automatically according to a schedule. If you select this option, the report can only be generated on demand. See “Generating a report manually” on page 682. |
| Daily | Select to generate the report each day. Also configure At hour. |
| These days | Select to generate the report on specific days of each week, then select those days. Also configure At hour. |
| These dates | Select to generate the report on specific date of each month, then enter those date numbers. Separate multiple date numbers with a comma. For example, to generate a report on the first and 30th day of every month, enter 1,30.
Also configure At hour. |
| At hour | Select the time of the day when the report will be generated, according to a 24-hour clock. |
Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!
how long does the logs last in the fortimail?
Depends on a wide variety of things. Amount of logs being generated, amount of storage on the device, etc…
in fortigate logs, we have field logid=0315012546 where the last digit of this field i.e. ‘012546’ is referred as message id and it helps in understanding the logs in detail.
Does such thing applies in log_id field of fortimail as well?
I am almost exclusively using session ID log quantifiers now to review FortiMail logs.