Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
spoojary
Staff
Staff

Created on ‎09-26-2023 05:29 AM

Article Id 276022

Technical Tip: Configuring Firewall for Log Roll Over when Disk Usage Exceeds 80%

Description This article describes how to configure the FortiGate firewall for log rollover when the disk usage surpasses 80%.
Scope FortiGate.
Solution

Resolution:

1. Understanding Default Disk Usage: FortiGate systems reserve about 25% of disk space for system utilities and unforeseen quota overflows. As a result, only approximately 75% of the disk space is available for log storage.

 

2. Configuring Log Settings: By default, when the log disk is full, the system will overwrite the oldest logs. However, users can adjust this setting to either:

  • Overwrite the oldest logs when the log disk becomes full.
  • Stop logging when the log disk is full.

To modify this behavior, use the following CLI commands:

 

config log disk setting
    set diskfull [overwrite|nolog]

end

 

Where:

overwrite: Overwrite the oldest logs when the log disk is full.
nolog: Stop logging in when the log disk is full.


Note: It is essential to regularly monitor disk usage and ensure that it does not affect the firewall's operational efficiency. Making frequent backups and utilizing a FortiAnalyzer for off-device logging can be beneficial in long-term log retention and monitoring.
3089
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.