| Description | This article describes why analytics log size decreased after firmware upgrade 6.4.x version. |
| Scope |
FortiAnalyzer v6.4.3+ GA releases. |
| Solution |
Analytics log decreased after the firmware upgrade 6.4 version. Firmware was upgraded from 6.2.x to 6.4.8, and the analytics log size was reduced from approximately 20TB to 2TB.
The detailed log contents were the same as before and it seems to be normal, just only the log size was different before the upgrade.
A new feature is introduced to compress SQL tables for better storage usage on 6.4.3. based on the CLI setting of the minimum age for compression, SQL tables will be rewritten into a column based.
CLI Setting:
# config sys SQL compress-table-min-age: 7 end
The default min-age is 7 days with a valid range between 0 and 10000 days. The 0-day allows compressing SQL tables with less than one-day age.
Related document: https://docs.fortinet.com/document/fortianalyzer/6.4.3/cli-reference/682885/fortianalyzer-6-4-3 Technical Tip: How to estimate disk space needed for Archive and Analytics Logs |
