Skip to main content
kliew
kliew
New Member
October 28, 2004
Question

How to log URL' s accessed ?

  • October 28, 2004
  • 7 replies
  • 7888 views
Is there a way under FortiOS 2.8 to just somehow log all URLs accessed? Currently it only logs source/destination IP addresses. I don' t need to block or filter on websites or URLs but just need to log them.... Thanks, Kenneth

    7 replies

    A
    Anonymous_User
    Contributor
    November 24, 2004
    If you have already enabled logging and can see source / destination addresses then just switch to Raw view (at top of page next to the search field). The Raw format shows details of the url,hostnames etc. You may need to scroll to the right depending on your screen resolution. Hope this helps, Andrew.
    Alex_Libenson
    Alex_Libenson
    New Member
    November 24, 2004
    The only way to do it is to buy FortiLog device and enable logging to FortiLog. Then in Protection Profile you will be able to select logging of Meta-Content information - this willinclude URLs fro HTTP and e-mail addresses for mail sessions.
    A
    Anonymous_User
    Contributor
    April 25, 2005
    Ya know, that' s pretty lame. I mean, the info is there but it won' t display it without Fortinet' s own logging device. My company didn' t buy a $6000 firewall with a 36GB harddrive so we could track IPs. Forcing someone to purchase another $1500 logging device just to see the URLs is silly. 36GB of available space is more than sufficient for what we need... I' m only using 1% as it is. And yes, I know how to reverse lookup but that won' t show me pages and rarely shows all the domains to an associated IP.
    A
    Anonymous_User
    Contributor
    May 20, 2005
    I need to be able to do the same. This is a very lame way of milking additional dollars out of customers. If the information is being picked up, why can' t we have access to it?
    A
    Anonymous_User
    Contributor
    April 26, 2005
    Log traffic to a fortilog (with the ip of your syslog server) without encryption and you will see what you want to see. Activate the meta info in the protection profile ;))
    wellington
    wellington
    New Member
    May 20, 2005
    Here' s a tip. Read the reply from ghostshell. Do what he suggests and then see what you have left to moan about - no one is trying to milk anyone.
    A
    Anonymous_User
    Contributor
    May 23, 2005
    Is it legan in US to log URLs?? IN EU (at least in Greece) this is not legal. One should not log URLs as this violates personal data. Even for statistical reasons this is not permited. Of cource you have the right to block some categories if you want (e.g. p-orn) but not monitor them.
    A
    Anonymous_User
    Contributor
    June 7, 2005
    Hi, If you are logging user activity from inside your own company/organization, you have the right to log anything and everything you want, from what I understand. There is no internal privacy for employees when using voice or data systems. They have to assume they can be monitored. I need to know for security purposes. Especially if a system' s activity looks suspicious. Will
    A
    Anonymous_User
    Contributor
    June 8, 2005
    In US.. maybe. In EU (or at least in Greece) this is not true. Intenal or external user privacy is human right! EU Law is higher than comapny law. (I do have some court verdicts on that in my country). U can do monitoring only if for every X people on a company you have computers (PC) for personal use (which are not monitored). Also the user need to have understanding that trafic is monitored on the work PCs! It exaclty the same like if someone had HIV and doesnt want others to know it. Would that give the right to an adminitrator to discover it (by monitoring HIV sites) because the HIV person happens to be an " internal" user ?!? You can block but you cannot monitor! Who is administrator, god to have the right to know what a user is dowing. We dont monitor email and phones.
    parmic
    parmic
    New Member
    June 8, 2005
    Administrator is the man who fixes user' s (internal or personal or any other kind of user) pc. He is not god but he needs monitoring or logging in order to understand the working situation.Think admin as a spy.Have you ever try to collect info from an ignorant user?Who told that mails and phones are not monitored , you just don' t know it?
    A
    Anonymous_User
    Contributor
    August 24, 2005
    Will this steps stated by ghostshell work if I have a FortiReporter 3.7 install?
    Terms & ConditionsAccessibility statement