beautypg.com

Custom fields for log messages, Reports, Report configuration enhancements – Fortinet FortiAnalyzer 3.0 MR7 User Manual

Page 16: Custom fields for log messages reports, Custom

background image

FortiAnalyzerVersion 3.0 MR7 Administration Guide

16

05-30007-0082-20080908

3.0 MR7 new features and changes

What’s new for 3.0 MR7

For the Log Receive Monitor widget, a diagnose command will be introduced to

provide information about total message rate, message rate per-protocol, and
message rate per-device in the CLI.

See

“System” on page 25

for information about the new widgets for FortiAnalyzer

3.0 MR7.

Custom fields for log messages

In FortiAnalyzer 3.0 MR7, you can now enable custom fields for log messages so
that when the FortiAnalyzer unit receives these types of log messages, it can
index them properly for reports or searching logs.

This feature is enabled only in the CLI using the following command syntax:

config log settings

set custom-field<1-5>

The previous logs require re-indexing for this feature to be effective on them, and
is only available in the CLI using the diagnose log-indexer command. This

particular command can index per device and type, or all devices.

Reports

Reports have been enhanced and modified for FortiAnalyzer 3.0 MR7. VoIP report
charts were also included in FortiAnalyzer 3.0 MR7. These changes are also
reflected in the CLI. See the FortiAnalyzer CLI Reference for additional
information about the associated commands.

Report configuration enhancements

Report configuration has changed dramatically from FortiAnalyzer 3.0 MR6 to
FortiAnalyzer 3.0 MR7. These changes are also reflected in the FortiGate unit’s
web-based manager and CLI. These dramatic changes do not affect previously
configured reports in FortiAnalyzer 3.0 MR6 and earlier; however, you may want
to reconfigure certain settings to simplify the previously configured reports.

These previously configured reports are separated based on what is included; for
example, if DeviceSummary1_layout contains filters and output settings, the filters
will be put in the Data Filter tab and given a name, and the output settings will be
put in the Output tab and also given a name.

Figure 1: The previous FortiAnalyzer 3.0 MR6 reports, outlined in red, carried

forward to FortiAnalyzer 3.0 MR7 and displayed in Layout with default
report layouts

See also other documents in the category Fortinet Hardware: