Skip to main content
cos
cos
New Member
February 6, 2015
Question

Fortianalyzer not showing logs

  • February 6, 2015
  • 20 replies
  • 42435 views

Hello,

 

We have 4 fortigates which are configured to send all the logs to the FortiAnalyzer. The point is that we dont see any logs in "fortiview and log view", but the device is receiving logs. Its stuck like loading the information.

We also can not see the logs in the fortigate configuring the FortiAnalyzer like source.

Whats happening with the logs???

 

I attached a screenshot about that we see in fortiview.

 

thanks,

regards,

Jesus

    20 replies

    Show previous replies
    scao_FTNT
    Staff
    scao_FTNT
    Staff
    February 13, 2015

    some detailed info we may need

     

    diag dvm device list

    diag log device

    diagnose fortilogd msgrate-device

    diagnose fortilogd lograte

    diag debug enable

    diagnose sql status sqlplugind

    diag sql process list

     

    thanks

     

    simon

    cos
    cosAuthor
    New Member
    February 13, 2015

    I agree with you. 

    we will send all the necessary information. First I requests to administrator privileges to my user. Because I get this:

     

    FAZ2000B $ diagnose dvm device list

    No permission to 'diag dvm'

     

    As soon as I get the information that you have asked me. I sent it.

    Regards,

     

    Diego C.

    cos
    cosAuthor
    New Member
    February 13, 2015

    I agree with you. 

    we will send all the necessary information. First I requests to administrator privileges to my user. Because I get this:

     

    FAZ2000B $ diagnose dvm device list

    No permission to 'diag dvm'

     

    As soon as I get the information that you have asked me. I sent it.

    Regards,

     

    Diego C.

    scao_FTNT
    Staff
    scao_FTNT
    Staff
    February 13, 2015

    Hi, cos, pls send me the ticket ID after you open one, I will monitor / update your ticket

     

    Thanks

     

    Simon

    cos
    cosAuthor
    New Member
    February 16, 2015

    Hi

    I am trying to open a ticket. But before telling me that I must register the product.

    https://support.fortinet....RegistrationEntry.aspx

    I am trying to register the FortiAnalyzer with Serial Number FL2KB3R12600025, but it shows me "Invalid input data"

     

    FortiAnalyzer

    Serial Number FL-2KB3R12600025

    Firmware Version v5.0.7-build0321 140627 (GA)

     

    Regards,

    scao_FTNT
    Staff
    scao_FTNT
    Staff
    February 16, 2015

    Hi, cos, sorry, I am not that familiar with ticket system and you may need to call our support team to create a ticket for you

     

    Thanks

     

    Simon

    cos
    cosAuthor
    New Member
    February 19, 2015

    I attached the exec top....do you see any strange thing???

     

    cos
    cosAuthor
    New Member
    March 2, 2015

    Hi Simon

    Sorry for the delay with this. At last we have gotten account to open the case.

    Ticket # 1342460 Title: Malfunction FortiAnalyzer.

    Thank You,

     

    Diego C

    scao_FTNT
    Staff
    scao_FTNT
    Staff
    March 2, 2015

    Hi, Diego, I will follow up / update your ticket

     

    Thanks

     

    Simon

    AtiT
    AtiT
    New Member
    March 2, 2015

    Hello cos,

    If you generate a report daily or weekly is it ok? Did you try to rebuild the logs?

    Did you set something on the System Settings -> Advanced -> Device Log Settings: Roll log file when size exceeds x MB and the Roll log files at regular time ?

     

    We are running FAZVM with 5.0.7 and I have the size for log files 200MB set and the weekly roll log. Maybe it will help? (I am not sure what is the default).

     

    What is the CPU and Memory usage during the report generation? Do you have some errors in the System Settings -> Event log?

     

    Terms & ConditionsCookie settingsAccessibility statement