Technical Note : How to disable unrequired entries being logged to the traffic log
Description
Solution
This article explains how to disable unneeded or unnecessary system traffic logs from logging in memory, disk or to a FortiAnalyzer.
Solution
The FortiGate's additional system traffic logs can be disabled by disabling the 'extended-traffic-log' from the log filter setting. This can be done only via command line as follows:
For memory logging:
For disk logging:
For FortiAnalyzer logging:
For memory logging:
| # config log memory filter (filter) # get ---> To Check (Expect to see an entry like 'extended-traffic-log: enable') (filter) # set extended-traffic-log disable (filter) # get ---> To Verify (Expect to see an entry like 'extended-traffic-log: disable') (filter) # end |
For disk logging:
| # config log disk filter (filter) # get ---> To Check (Expect to see an entry like 'extended-traffic-log: enable') (filter) # set extended-traffic-log disable (filter) # get ---> To Verify (Expect to see an entry like 'extended-traffic-log: disable') (filter) # end |
For FortiAnalyzer logging:
| # config log fortianalyzer filter (filter) # get ---> To Check (Expect to see an entry like 'extended-traffic-log: enable') (filter) # set extended-traffic-log disable (filter) # get ---> To Verify (Expect to see an entry like 'extended-traffic-log: disable') (filter) # end |
Related Articles
What log fields are omitted when brief-traffic-format is enabled