Description | This article describes how to troubleshoot no log received FortiAnalyzer VM. |
Scope | FortiAnalyzer. |
Solution |
Section 1.
Check firmware compatibility between FortiGate and FortiAnalyzer.
Reference.
Section 2.
1) Check FortiAnalyzer log setting on FortiGate.
From FortiGate CLI:
2) Test for log sending from FortiGate to FortiAnalyzer.
From FortiGate CLI:
# execute log fortianalyzer test-connectivity
3) Get tac report from FortiAnalyzer.
# execute tac report
Section 3.
Analyze all information/logs obtained. If FortiGate is sending log to FortiAnalyzer successfully, check for any abnormal logs on FortiAnalyzer tac report.
If this output on FortiAnalyzer tac report is found/observed, this shows that the FortiAnalyzer is constantly out of memory.
<3>[97484.603631] Out of memory: Kill process 21679 (sqllogd) score 93 or sacrifice child
Suggest to customer to increase memory allocation for FortiAnalyzer.
Related document. Troubleshooting Tip: FortiGate to FortiAnalyzer connectivity |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.