FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
kshathish
Staff
Staff
Article Id 194175
Description

This article explains how to disable unneeded or unnecessary system traffic logs from logging in memory, disk or to a FortiAnalyzer.


Solution
The FortiGate's additional system traffic logs can be disabled by disabling the 'extended-traffic-log' from the log filter setting. This can be done only via command line as follows:

For memory logging:
# config log memory filter
(filter) # get    ---> To Check (Expect to see an entry like 'extended-traffic-log: enable')
(filter) # set extended-traffic-log disable
(filter) # get    ---> To Verify (Expect to see an entry like 'extended-traffic-log: disable')
(filter) # end

For disk logging:
# config log disk filter
(filter) # get    ---> To Check (Expect to see an entry like 'extended-traffic-log: enable')
(filter) # set extended-traffic-log disable
(filter) # get    ---> To Verify (Expect to see an entry like 'extended-traffic-log: disable')
(filter) # end

For FortiAnalyzer logging:
# config log fortianalyzer filter
(filter) # get    ---> To Check (Expect to see an entry like 'extended-traffic-log: enable')
(filter) # set extended-traffic-log disable
(filter) # get    ---> To Verify (Expect to see an entry like 'extended-traffic-log: disable')
(filter) # end

Related Articles

What log fields are omitted when brief-traffic-format is enabled

Contributors