Fortinet fortigate-100a Betriebsanweisung

This example shows how to enable logging to a FortiLog unit, set the FortiLog IP 
address, add a local ID, and add a pre-shared key for an IPSec VPN tunnel.

config log fortilog setting

set status enable
set server 192.168.100.1
set localid net_host_c
set psksecret J7fram54AhTWmoF5

end

This example shows how to display the log setting for logging to a FortiLog unit.

get log fortilog setting

This example shows how to display the configuration for logging to a FortiLog unit.

show log fortilog setting

If the show command returns you to the prompt, the settings are at default.

Use this command to configure log settings for logging to a remote syslog server.

You can configure the FortiGate unit to send logs to a remote computer running a 
syslog server.

config log syslogd setting

set <keyword> <variable>

psksecret 
<str_psk>

Enter the pre-shared key for the IPSec 

VPN tunnel to a FortiLog unit. You can 

create an IPSec VPN tunnel if one or more 

FortiGate units are sending log messages 

to a FortiLog unit across the Internet. Using 

an IPSec VPN tunnel means that all log 

messages sent by the FortiGate are 

encrypted and secure.

No 

default.

All models.

server 
<address_ipv4>

Enter the IP address of the FortiLog unit.

No 

default.

All models.

status 
{disable | enable}

Enter enable to enable logging to a 

FortiLog unit.

disable All models.

Note: The IPSec VPN settings for the FortiGate unit must match the VPN settings on the 
FortiLog unit.

Note: The only command keyword for syslog setting that is not represented in the web-
based manager is the facility keyword.