(http://www.ipspace.

eu)

Home (http://www.ipspace.eu/) About (http://www.ipspace.eu/about-2/) Contact (http://www.ipspace.eu/contact/) <

Home (http://www.ipspace.eu) Cisco (http://www.ipspace.eu/category/cisco/) Fortinet (http://www.ipspace.eu/category/fortinet/) Genera !ecurity (http://www.ipspace.eu/category/genera -security/) "inu# (http://www.ipspace.eu/category/ inu#/) $ews (http://www.ipspace.eu/category/news/) %i&erbe' (http://www.ipspace.eu/category/ri&erbe'/) !cripts (http://www.ipspace.eu/category/scripts/) (in'ows (http://www.ipspace.eu/category/win'ows/)

Fortigate )utoria * "ogging an' A erts

January 26th, 2012 admin

GeoGraphix for Geologists

High Quality Cross Sections, Maps and 3D Geomodels. Free Test Drive
.lm!r.com

Here is the 2nd Tutorial that i created, hope you enjoy this one too.

"ogging an' A erts

(http://www.ipspace.eu/wp-content/ga ery/fortiguar'/fortigate- ogging.+pg)

Fortigate can store its logs in the following 1. "oca H,, ! this option can "e ena"led from the #$% 2. FortiAna y-er ! this is my fa&orite. %t is a de&ice to which 'ortigate sends all the logs and then you can create pretty reports. This option can "e ena"led "y pro&iding the %( of the FortiAna y-er)'*+ or "y using ,*utomatic -isco&ery., "ut for the automatic disco&ery you will need to ha&e the '* in the same su"net as the 'ortigate. The traffic to the 'orti*naly/er can "e sent through 0yslog)1-( 213+ or "y T#( 213 )4'T(+. The 4'T( is used to transfer ,content archi&e. and to remotely &iew the log files and reports 5. !ystem .emory 6 i do not recommend you to do this, as this will consume a lot of #(1 and 7emory and you will also ha&e a small log file)the 1st logs are deleted as the memory gets full+. *lso remem"er, 7emory is 84$*T%$9 so that means if the ': re"oots you will loose all your logs. 3. !ys og ! captures Traffic, 9&ents, 8o%(, *nti0pam, *nti8irus and *ttac; logs. This option does <4T support ,#ontent *rchi&e logs.. 2. Fortiguar' Ana ysis !er&ice This is a su"scription "ased ser&ice that pro&ides we"6"ased logging an reporting solution. This "asically means that 'ortinet will store your logs for you. This is not ideal if your "usiness handles important and sensiti&e stuff)i ;now we all ha&e important stuff +.

*nother ad&antage of using 'orti*naly/er is that the 'ortigate can support up to 5 '*=0yslog de&ices for logging. This option is only a&aila"le from the #$%. % mentioned Content Archi&e so it is normal to e>plain what this means.

Content Archi&ing feature lets you store session transaction data on an offline storage)'orti*naly/er+. The following networ; traffic is stored 1. HTT( 2. 'T( 5. <<T( 3. %7 )?ahoo, %#@, 70<, *%7+ 2. 9mail )(4(5, %7*(, 07T(+ This feature is 4<$? a&aila"le when you are using a 'orti*naly/er. Ahen using 'ortiguard *nalysis 0er&er, only content summary of the logs are stored.

To ena"led the #ontent *rchi&ing feature you must use -$( rules that we will tal; in the upcomming tutorials.

Hope this helped you. 0ee you on the ne>t tutorial, -aniel

%e ate' /osts
Fortinet 0sefu "in1s (http://www.ipspace.eu/fortinet/fortinet-usefu - in1s/) Fortigate )utoria * !pam Fi tering (http://www.ipspace.eu/fortinet/fortigate-tutoria -spam-fi tering/) Fortigate 2 Fortinet Anti&irus (http://www.ipspace.eu/fortinet/fortigatefortinet-anti&irus/) Fortigate )utoria * Authentication (http://www.ipspace.eu/fortinet/fortigate-tutoria -authentication/) Fortigate )utoria * Fortiguar' (http://www.ipspace.eu/fortinet/fortigate-tutoria -fortiguar'/) (osted in Fortigate (http://www.ipspace.eu/category/fortinet/fortigate/), Fortinet (http://www.ipspace.eu/category/fortinet/) Tags content archi&e (http://www.ipspace.eu/tag/content-archi&e/), FC$!A (http://www.ipspace.eu/tag/fcnsa/), FC$!/ (http://www.ipspace.eu/tag/fcnsp/), fortiana y-er (http://www.ipspace.eu/tag/fortiana y-er/), fortigate (http://www.ipspace.eu/tag/fortigate-2/), fortiguar' (http://www.ipspace.eu/tag/fortiguar'/), fortiguar' ser&ices (http://www.ipspace.eu/tag/fortiguar'-ser&ices/), fortinet (http://www.ipspace.eu/tag/fortinet-2/), sys og (http://www.ipspace.eu/tag/sys og/) B Fortigate Anti3irus an' Anti!pam (http://www.ipspace.eu/fortinet/fortigate-anti&irus-an'-antispam/) Fortigate )roub eshooting * ,HC/ (http://www.ipspace.eu/fortinet/fortigate-troub eshooting-'hcp/) C ?ou can ea&e a response (4respon'), or trac1bac1 (http://www.ipspace.eu/fortinet/fortigate-tutoria - ogging-an'-a erts/trac1bac1/) from your own site.

"ea&e a %ep y
<ame )reDuired+

7ail )w ill not "e pu"lished+ )reDuired+

Ae"site

0u"mit #omment 0earch

(4) (http://www.a''this.com/boo1mar1.php5&62789winname6a''this9pub6#a-:a;7e<'=>c'?7e=:9source6tb#2789 ng6fr9s6'e icious9ur 6http@>A@2F@2Fwww.ipspace.eu@2Ffortinet@2Ffortigate-tutoria - ogging-an'-

a erts@2F9tit e6Fortigate@28)utoria @28@A2@B8@=>@28"ogging@28an'@28A erts@28@?C@28$etwor1@28@2;@28!ecurity@28C og9ate6A)#a-:a;7e<'=>c'?7e=:/-/-/788;af;?=':e>f=c/<9frommenu6<9ui'6788;af;?aBfba7?B9ct6<9tt68) (4) (http://www.a''this.com/boo1mar1.php5&62789winname6a''this9pub6#a-:a;7e<'=>c'?7e=:9source6tb#2789 ng6fr9s6'igg9ur 6http@>A@2F@2Fwww.ipspace.eu@2Ffortinet@2Ffortigate-tutoria - ogging-an'a erts@2F9tit e6Fortigate@28)utoria @28@A2@B8@=>@28"ogging@28an'@28A erts@28@?C@28$etwor1@28@2;@28!ecurity@28C og9ate6A)#a-:a;7e<'=>c'?7e=:/-/-/788;af;?=':e>f=c/29frommenu6<9ui'6788;af;?ee'e<c:79ct6<9tt68) (http://www.a''this.com/boo1mar1.php5&62789winname6a''this9pub6#a-:a;7e<'=>c'?7e=:9source6tb#2789 ng6fr9s6stumb eupon9ur 6http@>A@2F@2Fwww.ipspace.eu@2Ffortinet@2Ffortigate-tutoria - ogging-an'a erts@2F9tit e6Fortigate@28)utoria @28@A2@B8@=>@28"ogging@28an'@28A erts@28@?C@28$etwor1@28@2;@28!ecurity@28C og9ate6A)#a-:a;7e<'=>c'?7e=:/-/-/788;af;?=':e>f=c/>9frommenu6<9ui'6788;af;?>B;88?:B9ct6<9tt68) (4) (4)

(https://twitter.com/ip!paceDeu)Fo ow .e on )witterE (https://twitter.com/ip!paceDeu)

0earch
(http://fee's.fee'burner.com/ipspace/&Hc.)

$G3 3i'eo %esources

The %ntelli0er& Eroad"and <etwor; and its #omponentsF
www.no&.com

"F-CG% .ethane Ana y-er

7a;e High6@uality 7easurements %n 9>treme 9n&ironments.
www.licor.com=methane

GeoGraphi# for Geo ogists

High @uality #ross 0ections, 7aps and 5:eomodels. 'ree Test -ri&e
www.lm;r.com

0!C !pectrum Ana y-er

0*33E 1H/ to 3.3:H/, 6121dEm, GH1H includes *7, '7, 00E, and #A demod
www.0ignalHound.com

Certifications

%ecent /osts
Fortinet 0sefu "in1s
(http://www.ipspace.eu/fortinet/fortinet-usefu - in1s/)

CCFA !ecurity &: C ueprint is out (http://www.ipspace.eu/cisco/asa/ccie-security-&:-b ueprint-is-out/) Creating a Fortigate 3/$ (http://www.ipspace.eu/fortinet/creating-a-fortigate-&pn/) ip!pace Forum 5 (http://www.ipspace.eu/news/ipspace-forum/) "inu# Fi e !ystem (http://www.ipspace.eu/ inu#/ inu#-fi e-system/)

Categories
A!A (http://www.ipspace.eu/category/cisco/asa/) Ca .anager (http://www.ipspace.eu/category/cisco/ca manager/) Fortigate (http://www.ipspace.eu/category/fortinet/fortigate/) Fortinet (http://www.ipspace.eu/category/fortinet/) Genera !ecurity (http://www.ipspace.eu/category/genera -security/) "inu# (http://www.ipspace.eu/category/ inu#/) $ews (http://www.ipspace.eu/category/news/) (in'ows (http://www.ipspace.eu/category/win'ows/)

C ogro

C ogro
,anie s CCFA b og (http:// ostintransit.se) ,arrenHs CCFA mission (http://me ow'.co.u1/ccie/) ,e&irusare (http://'e&irusare.com/)

%ecent Comments
%outer!ecure (http://routersecure.com) on )witter Account (http://www.ipspace.eu/news/twitter-account/4comment-:?B2) ,anie (http://www.ipspace.eu) on Fortigate F/! (http://www.ipspace.eu/fortinet/fortigate/fortigate-ips/4comment-:?8=) j"lastman on Fortigate F/! (http://www.ipspace.eu/fortinet/fortigate/fortigate-ips/4comment-:?8B) ,anie (http://www.ipspace.eu) on Creating a Fortigate 3/$ (http://www.ipspace.eu/fortinet/creating-a-fortigate&pn/4comment-:;?=)

A e# (http://a e#amaran'ei.ca) on Fnsecure .aga-ine (http://www.ipspace.eu/news/insecure-maga-ine/4comment-:2B7)

Archi&es
Iune 28<2 (http://www.ipspace.eu/28<2/8;/) .ay 28<2 (http://www.ipspace.eu/28<2/87/) Apri 28<2 (http://www.ipspace.eu/28<2/8:/) .arch 28<2 (http://www.ipspace.eu/28<2/8>/) February 28<2 (http://www.ipspace.eu/28<2/82/) Ianuary 28<2 (http://www.ipspace.eu/28<2/8</)

Feature' 3i'eo

#opyright I $etwor1 9 !ecurity C og (http://www.ipspace.eu) 6 %tJs all a"out 0ecurity (owered "y (or'/ress (http://wor'press.org/) K -esigned "y !hare/oint Hosting (http://www.apps:rent.com/sharepoint.htm ) K Than;s to Cusiness Amai Hosting (http://businessemai hosting.com/), /ro+ect !er&er Hosting (http://pro+ectser&erhosting.com/) and Hoste' 3irtua ,es1top (http://&irtua 'es1topon ine.com/hoste'-'es1top/) A!A (http://www.ipspace.eu/category/cisco/asa/) Ca .anager (http://www.ipspace.eu/category/cisco/ca manager/) Cata yst !witches (http://www.ipspace.eu/category/cisco/switches/) FortiAna y-er (http://www.ipspace.eu/category/fortinet/fortiana y-er-fortinet/) Fortigate (http://www.ipspace.eu/category/fortinet/fortigate/) Fortimai (http://www.ipspace.eu/category/fortinet/fortimai /) %e'Hat (http://www.ipspace.eu/category/ inu#/re'hat/) 0buntu (http://www.ipspace.eu/category/ inu#/ubuntu/)