Technical Tip: Enabling config log fortianalyzer override-filter in FortiGate
| Description | This article explains how to enable the 'config log fortianalyzer override-filter' command on FortiGate. This command becomes available only when certain prerequisites are configured in the correct order within a Virtual Domain (VDOM). |
| Scope | FortiGate with VDOMs, FortiAnalyzer logging configuration. |
| Solution | To successfully configure the 'config log fortianalyzer override-filter', the following two settings must be enabled in order and within the same VDOM context:
Once both are enabled, the override-filter configuration becomes available.
Example Configuration: Enter the target VDOM (e.g., test):
config vdom edit test Enable FortiAnalyzer override:
config log setting set faz-override enable end
Enable FortiAnalyzer override-setting and specify the server:
config log fortianalyzer override-setting set status enable set server "10.10.10.10" end
The following command becomes accessible:
config log fortianalyzer override-filter
Verification: Verify the configuration using the following commands:
show log setting show log fortianalyzer override-setting show log fortianalyzer override-filter |