Description | This article describes how to troubleshoot no log received FortiAnalyzer VM. |
Scope | |
Solution |
Section 1.
Check firmware compatibility between FortiGate and FortiAnalyzer.
Reference.
Section 2.
1) Check FortiAnalyzer log setting on FortiGate.
From FortiGate CLI:
2) Test for log sending from FortiGate to FortiAnalyzer.
From FortiGate CLI:
# execute log fortianalyzer test-connectivity
3) Get tac report from FortiAnalyzer.
# execute tac report
Section 3.
Analyze all information/logs obtained. If FortiGate is sending log to FortiAnalyzer successfully, check for any abnormal logs on FortiAnalyzer tac report.
If this output on FortiAnalyzer tac report is found/observed, this shows that the FortiAnalyzer is constantly out of memory.
<3>[97484.603631] Out of memory: Kill process 21679 (sqllogd) score 93 or sacrifice child
Suggest to customer to increase memory allocation for FortiAnalyzer.
Related document. Troubleshooting Tip: FortiGate to FortiAnalyzer connectivity |