how to allow the logs pass from the fortigate to the server

Forum|Forum|3 years ago
August 16, 2022
1 reply
1333 views

hey help me plz I want to send Syslog logs of my router to the elk server in the internal interface of my FortiGate I configured the Syslog in the router, I configure a policy rule in my FortiGate and I configured filebeat in the elk server but didn't work I don't receive the Syslog logs how can I follow the Syslog logs from my router to see the problem where?

A

Anonymous_User

New Contributor II

Hi @Firasbg ,

Thank you for the diagram.
From what i understand , the traffic is from 192.168.3.2(router) to 192.168.37.x(server).
This policy should be From WAN > LAN.

You may verify the connectivity 1st.
Ping from router to the server. It is working

Are you able to telnet the server port?

-From router

-From same segment

If from same segment itself is not working, most probably server is blocking. Example: endpoint control, Windows firewall.

Let me know your finding 1st, then i will assist further to verify the traffic on Fortigate.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded