Technical Tip: Clear old system logs in FortiSIEM
Description
Â
This article describes how to clear old logs.
Â
Scope
Â
FortiSIEM.
Â
Solution
Â
The following steps describe how to review the current space used by the logs and provide a way to clear old logs.
Â
Note: Proceed with the steps below only after gathering the logs if there is a TAC case and not enough space.
Â
To review the current available space:
Â
df -hT | grep -e nfs -e xfsÂ
To review the size of the log directories:
Â
du -sh /opt/phoenix/log/
du -sh /var/log/ndu -sh /opt/glassfish/domain*/domain*/logs/Â
To find the logs that were created a week ago:
Â
find /opt/phoenix/log/phoenix* -ctime +14 -iname "*log*" # find logs that are 14+ days older
find /var/log/ -ctime +14 -iname "*log*"
find /opt/glassfish/domain*/domain*/logs/ -ctime +14 -iname "*log*"Â
After reviewing the logs, add -delete at the end of the commands above to delete the logs.
Related article: