Fortinet FortiGate 4000 Betriebsanweisung

This guide only covers Command Line Interface (CLI) commands and command 
keywords that are not represented in the web-based manager. For complete 
descriptions of working with CLI commands see the FortiGate CLI Reference Guide.

Use this command to configure log settings for logging to a FortiLog unit.

The FortiLog unit is a log analyzer and manager that can combine the log information 
from various FortiGate units.

config log fortilog setting

set <keyword> <variable>

config log fortilog setting

unset <keyword>

get log fortilog setting

show log fortilog setting

Note: The command keywords for fortilog setting that are not represented in the web-
based manager are localid and psksecret. 

encrypt 
{enable | disable}

Enter enable to enable encrypted 

communication with the FortiLog unit.

disable

All models.

localid <str_id>

Enter the local ID for an IPSec VPN tunnel 

to a FortiLog unit. You can create an IPSec 

VPN tunnel if one or more FortiGate units 

are sending log messages to a FortiLog 

unit across the Internet. Using an IPSec 

VPN tunnel means that all log messages 

sent by the FortiGate are encrypted and 

secure. 

No 

default.

All models.

psksecret 
<str_psk>

Enter the pre-shared key for the IPSec 

VPN tunnel to a FortiLog unit. You can 

create an IPSec VPN tunnel if one or more 

FortiGate units are sending log messages 

to a FortiLog unit across the Internet. Using 

an IPSec VPN tunnel means that all log 

messages sent by the FortiGate are 

encrypted and secure.

No 

default.

All models.

server 
<address_ipv4>

Enter the IP address of the FortiLog unit.

No 

default.

All models.

status 
{disable | enable}

Enter enable to enable logging to a 

FortiLog unit.

disable All models.

Note: The IPSec VPN settings for the FortiGate unit must match the VPN settings on the 
FortiLog unit.