Log View – FortiManager 5.2

Log details

Archive

The Archive tab is displayed next to the Log Details tab in the lower content pane when archived logs are available. The archive icon is displayed in the log entry line to identify that an archive file is available.

Log archive

The name and size of the archived log files are listed in the table. Selecting the download button next to the file name allows you to save the file to your computer.

Depending on the file type of the archived log file, the View Packet Log button may also be available next to the download button. Select this button to open the View Packet Log dialog box, which displays the path and content of the log file.

View packet log

Browsing log files

Go to FortiView > Log View > Log Browse to view log files stored for devices. In this page you can display, download, delete, and import log files.

When a log file reaches its maximum size or a scheduled time, the FortiManager rolls the active log file by renaming the file. The file name will be in the form of xlog.N.log, where x is a letter indicating the log type, and N is a unique number corresponding to the time the first log entry was received.

For information about setting the maximum file size and log rolling options, see Configuring rolling and uploading of logs.

If you display the log messages in formatted view, you can perform all the same actions as with the log message list. See Viewing log messages.

Log file list window

This page displays the following:

Delete Select the file of files whose log messages you want to delete, then select Delete, and then select OK in the confirmation dialog box.
Display Select the file whose log messages you want to view, then select Display to open the log message list. For more information, see Viewing log messages
Download Download a log file. See Downloading a log file.
Import Import log files. See Importing a log file.
Search Search the log files by entering a text value in the search window, such as a device serial number.
Log file list A list of the log files.
Device The device host name.
Serial Number The device serial number.
Type The log type. For example: Email Filter, Event, Traffic, Web Filter, Virus, Application Control, Data Leak Prevention, etc.
Log Files A list of available log files for each device.

The current, or active, log file appears as well as rolled log files. Rolled log files include a number in the file name, such as vlog.1267852112.log. If you configure the FortiManager unit to delete the original log files after uploading rolled logs to an FTP server, only the current log will exist.

From The time when the log file began to be generated.
To The time when the log file generation ended.
Size (bytes) The size of the log file, in bytes.
Pagination Adjust the number of logs that are listed per page and browse through the pages.
This entry was posted in Administration Guides, FortiManager and tagged , , on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.