Oct 09, 2014 · Fortigate Fortigate, Fortinet, interface, statistics ← Ruckus wireless – Stuck in provisioning Fortigate – How to create a default route with a dynamic connection. → 4 responses to “ How to get Fortigate interface statistics such as errors/discards ”
You can configure the FortiGate unit to log VPN events. For IPsec VPNs, Phase 1 and Phase 2 authentication and encryption events are logged. For information about how to interpret log messages, see the FortiGate Log Message Reference. To log VPN events
To configure Fortinet FortiGate devices via Command Line Interface. Log in to the Command Line Interface (CLI). Enter the following commands: config log syslogd setting. set format cef. NOTE: To enable CEF format in some previous FortiOS versions, enter the set csv disable command. set csv disable. set facility <facility_name>.
Fortigate log - Intermittent deny log with dst interface "unknown-0" Hi, Today in the fortianalyzer with firmware 5.6.6 connected to a FortiGate cluster of 3000D with firmware 5.6.6 we noticed some logs related to TCP sessions that intermittently are displayed as deny-policy violation - destination interface "unknown-0".
Given that the logs were lost due the fact the FortiGate was reset and the unit is storing it’s logs in RAM, I can’t diagnose the exact cause. But we did see in the Crashlog “diag debug crashlog read”, which is written to flash that the cmdbsvr was crashing.
Enter an alternate name for a physical interface on the FortiGate unit. This field appears when you edit an existing physical interface. The alias does not appear in logs. The maximum length of the alias is 25 characters. Type. The configuration type for the interface, such as VLAN or Software Switch. Link Status
When a Virtual IP (VIP) has the same IP address of FortiGate interface and forwarding the same ports used for HTTP/HTTPS access (example 80 or 443), the VIP will override the administrative access. This should either be removed or changed such that it doesn't overlap with FortiGate HTTP/HTTPS ports.