Description |
This article describes how to disable session start logs. There are occasions when one wants to disable the traffic logging on some firewall policies due to the need to see only certain logs on other firewall policies on either FortiGate’s GUI or FortiAnalyzer. The 'Log Allowed Traffic' option is already set off on the GUI:
However, on the FortiGate or FortiAnalyzer or any other syslog servers, one still see the messages 'Accept: session start' with the respective firewall policy name and ID associated:
|
Scope | All FortiOS version. |
Solution |
On the CLI, disable the following setting in the firewall policy:
# config firewall policy edit <id> set logtraffic-start enable ---> disable this next end |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.