Fortinet FortiGate 4000 Betriebsanweisung
Log & Report
CLI configuration
FortiGate-4000 Administration Guide
01-28006-0012-20041105
365
CLI configuration
This guide only covers Command Line Interface (CLI) commands and command
keywords that are not represented in the web-based manager. For complete
descriptions of working with CLI commands see the FortiGate CLI Reference Guide.
keywords that are not represented in the web-based manager. For complete
descriptions of working with CLI commands see the FortiGate CLI Reference Guide.
fortilog setting
Use this command to configure log settings for logging to a FortiLog unit.
The FortiLog unit is a log analyzer and manager that can combine the log information
from various FortiGate units.
from various FortiGate units.
Command syntax pattern
config log fortilog setting
set <keyword> <variable>
config log fortilog setting
unset <keyword>
get log fortilog setting
show log fortilog setting
Note: The command keywords for fortilog setting that are not represented in the web-
based manager are localid and psksecret.
based manager are localid and psksecret.
log fortilog setting command keywords and variables
Keywords and
variables
variables
Description
Default
Availability
encrypt
{enable | disable}
{enable | disable}
Enter enable to enable encrypted
communication with the FortiLog unit.
disable
All models.
localid <str_id>
Enter the local ID for an IPSec VPN tunnel
to a FortiLog unit. You can create an IPSec
VPN tunnel if one or more FortiGate units
are sending log messages to a FortiLog
unit across the Internet. Using an IPSec
VPN tunnel means that all log messages
sent by the FortiGate are encrypted and
secure.
No
default.
All models.
psksecret
<str_psk>
<str_psk>
Enter the pre-shared key for the IPSec
VPN tunnel to a FortiLog unit. You can
create an IPSec VPN tunnel if one or more
FortiGate units are sending log messages
to a FortiLog unit across the Internet. Using
an IPSec VPN tunnel means that all log
messages sent by the FortiGate are
encrypted and secure.
No
default.
All models.
server
<address_ipv4>
<address_ipv4>
Enter the IP address of the FortiLog unit.
No
default.
All models.
status
{disable | enable}
{disable | enable}
Enter enable to enable logging to a
FortiLog unit.
disable All models.
Note: The IPSec VPN settings for the FortiGate unit must match the VPN settings on the
FortiLog unit.
FortiLog unit.