|
FortiGate will use the source IP by default, as one of the egress interfaces.
In order to source the traffic from a loopback or from a different interface, the following settings have to be enabled:
FortiGate with Single VDOM:
# config log syslogd setting
set status enable
set server "x.x.x.x" ==>==> Syslog Server IP
set source-ip y.y.y.y ==>==> source ip to use
end
FortiGate with Multi-vdom:
Firewalls with multi-vdom can have a specific Syslog server for each VDOM.
To enable vdom-specific Syslog Server, the following feature has to be enabled:
# config vdom
edit <vdom_name>
config log setting
set syslog-override enable <----- This enables VDOM specific syslog server.
end
To change the source-ip of vdom-specific syslog traffic:
# config log syslogd override-setting
set server "x.x.x.x" <----- Syslog Server IP.
set source-ip y.y.y.y <----- Source IP to use.
end
|
