FortiGate to Splunk syslog filter commands

Forum|Forum|4 years ago
March 3, 2022
1 reply
1762 views

Hi All,

Good day! Just asking if there is any command that we can type in the CLI so that we can verify whether the filtered events have been applied?

Here are the commands that we have entered to our firewall. FGT 600D

>>> config log syslogd filter
>>>set filter-type include
>>>set filter "event-level(information)"

May we know what is the command to type

FortiGate

KhrisAuthor

New Member

Eureka! Just discovered the proper command to type in.

>>> config log syslogd filter
>>>set filter-type include
>>>set filter "event-level(information) event-level(debug) event-level(critical)"
show
end

NOTE: THIS IS THE COMMAND YOU WILL NEED TO TYPE IN FOR FILTERING MULTIPLE EVENT-LEVELS. HAVE A WONDERFUL DAY!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded