Example – Fortinet 100A User Manual

Log & Report

fortilog setting

FortiGate-100A Administration Guide

01-28007-0068-20041203

353

get log fortilog setting

show log fortilog setting

Example

This example shows how to enable logging to a FortiLog unit, set the FortiLog IP
address, add a local ID, and add a pre-shared key for an IPSec VPN tunnel.

config log fortilog setting

set status enable
set server 192.168.100.1
set localid net_host_c
set psksecret J7fram54AhTWmoF5

end

This example shows how to display the log setting for logging to a FortiLog unit.

get log fortilog setting

This example shows how to display the configuration for logging to a FortiLog unit.

show log fortilog setting

If the show command returns you to the prompt, the settings are at default.

log fortilog setting command keywords and variables

Keywords and
variables

Description

Default

Availability

encrypt
{enable | disable}

Enter enable to enable encrypted

communication with the FortiLog unit.

disable

All models.

localid

Enter the local ID for an IPSec VPN tunnel

to a FortiLog unit. You can create an IPSec

VPN tunnel if one or more FortiGate units

are sending log messages to a FortiLog

unit across the Internet. Using an IPSec

VPN tunnel means that all log messages

sent by the FortiGate are encrypted and

secure.

No

default.

All models.

psksecret

Enter the pre-shared key for the IPSec

VPN tunnel to a FortiLog unit. You can

create an IPSec VPN tunnel if one or more

FortiGate units are sending log messages

to a FortiLog unit across the Internet. Using

an IPSec VPN tunnel means that all log

messages sent by the FortiGate are

encrypted and secure.

No

default.

All models.

server

Enter the IP address of the FortiLog unit.

No

default.

All models.

status
{disable | enable}

Enter enable to enable logging to a

FortiLog unit.

disable All models.

Note: The IPSec VPN settings for the FortiGate unit must match the VPN settings on the
FortiLog unit.