FortiGate防火墙可以通过FortiAnalyzer或FortiManager进行日志收集记录,但是需要注意的是有硬盘的设备才能配置定时上传。
下面举例两个型号,FortiGate 300D有硬盘,FortiGate 100E无硬盘。
FortiGate 300D的设备有硬盘,所以有存储&上传日志的选项:
FortiGate 100E的设备无硬盘,所以没有存储&上传日志的选项:
在有硬盘的设备上配置相关命令的话会看到告警提示需要硬盘开启日志记录
Warning: store-and-upload needs disk logging to be enabled.
Please make sure to check disk log setting.
防火墙上配置定时上传日志CLI命令:
config log fortianalyzer setting
set status enable
set upload-option store-and-upload
set upload-interval daily
set upload-time 00:59
end
