Techinical Tip: How to enable the Per Local-in Policy Logging option
| Description | This article describes an enhancement of local-in traffic.
|
| Scope | FortiGate v7.6. |
| Solution | Make sure the local traffic log is enabled:
config log memory filter set local-traffic enable end
Or:
config log disk filter set local-traffic enable end config log fortianalyzer filter set local-traffic enable end
Or:
config log fortiguard filter set local-traffic enable end
Enable the local-in-policy logging:
config log setting set local-in-policy-log {enable | disable} --> Default action is 'disable'. end
Edit the local-in-policy desired and enable the log:
config firewall local-in-policy edit <id> set logtraffic {enable | disable} --> Default action is 'disable'. end end
Note: The 'logtraffic' in the local-in-policy will not be displayed if 'local-in-policy-log' in 'config log settings' is disabled.
It can also be enabled via the GUI. Go to Log & Report, Log Settings, enable 'Per policy':
The 'Log allowed traffic' option will be displayed in the local-in-policy:
The log violations will be recorded in the local traffic logs:
|
