Technical Tip: Maximum number of logs can be downloaded from FortiAnalyzer (Log View)
| Description | This article describes how to increase the number of logs that can be downloaded from Log View in FortiAnalyzer. |
| Scope | FortiAnalyzer. |
| Solution | By default, the maximum number of logs that can be downloaded from log view is 100,000. This can be checked by running the following command in the FortiAnalyzer CLI: config system log settings get download-max-logs : 100000 To modify the download-max-logs value, use the following command: config system log settings set download-max-logs <number of logs> end Substitute <number of logs> with any desired value between 100 and 5,000,000. Example: Following situation in Logview -> Logs -> FortiGate -> Logs, there are 77,082 entries, but only 500 logs were downloaded in the first attempt. 
 
The configuration in system log settings was validated and had a value of maximum logs of 500. 
It was changed to allow a higher value (100,000), then the logs were downloaded, and all entries were available.
Note: Changing the values to higher values may require more resources and may lead to performance issues, especially if using small box-type devices, so this should be taken into account. Related document: |