So as you may have noticed, your logs can often be filled with local broadcasts and traffic of that sort. You can remove these from your logging to help clean things up. This never crossed my mind until I was […]
Extended UTM log for Application Control For FortiOS 5.0 devices, the application control log is not visible until you enable the extended UTM log in the FortiOS CLI. To enable extended UTM log, use the following CLI command: config application […]
SQL database rebuild FortiAnalyzer can receive new logs during SQL database rebuild. FortiView, Log View, Event Management, and Reports are also available.However, all scheduled reports are skipped. It is recommended to generate reports only after finishing the database rebuilding process.
SSLv3 on FortiAnalyzer-VM64-AWS Due to known vulnerabilities in the SSLv3 protocol, FortiAnalyzer-VM64-AWS only enables TLSv1 by default. All other models enable both TLSv1 and SSLv3. If you wish to disable SSLv3 support, please run: config system global set ssl-protocol t1sv1 […]
Log Aggregation or Forwarding FortiAnalyzer 5.4 cannot aggregate or forward logs to FortiAnalyzer 5.2 units. Please use the same FortiAnalyzer 5.4 version across all units.
Authentication Settings for Log Aggregation FortiAnalyzer version 5.4.0 requires an administrator to be defined on the log aggregation server. For authentication to the log aggregation server, the administrator and its password must be set on all log aggregation forwarders.
SQL Storage Settings for Collector Mode During upgrade to FortiAnalyzer 5.4.0, the SQL database in units running in Collector mode are disabled to optimize performance. You can re-enable the SQL storage settings to view logs and analytics with the following […]
If you are using a FortiAnalyzer in any capacity, go ahead and upgrade to 5.4. You will be thankful! There are some things you need to take note of though before proceeding: in 5.4, Fortinet changed the raw log / SQL design […]