Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
fgallardo1
Staff
Staff

Created on ‎12-05-2017 01:38 PM Edited on ‎12-19-2024 10:13 PM By Community Manager

Article Id 189549

Technical Tip: Download Debug Logs and 'execute tac report'

Description

 

This article describes how the execute TAC report command can be used to collect diagnostic information about a FortiGate issue.
 
The FortiOS integrates a script that executes a series of diagnostic commands that take a snapshot of the current state of the device. 
The output can be saved to a log file and reviewed when troubleshooting.

It is important to run this command when the issue is present.
 
The TAC report will collect useful information such as:
  • Serial number.
  • Firmware version.
  • FortiGuard updates state.
  • Memory and CPU usage.
  • Global Configuration.
  • Hardware features.
  • Interface errors.
  • Traffic statistics.
  • HA diagnostics.
  • Process crash log.

 

Scope

 

FortiGate.


Solution

 

There are two steps to obtaining the debug logs and TAC report.

 

  1. From the GUI interface: Go to System -> Advanced  -> Debug  Logs, select 'Download Debug Logs' and save the file.
  2. From the CLI management interface via SSH or console connection: Connect to the  FortiGate  (see related article).
 
It is preferred to collect the data from the command line instead of exporting from the web interface.
The export from the WebUI will truncate the beginning of the file due to the interactive command 'diag sys top', which will result in some outputs being missing (like the command 'get sys stat' showing the firmware version, serial number, system time, etc and the command 'get sys perf stat' showing the system load, memory usage, uptime, etc).

On the command line run the following command and let the script to run until complete. This will take a few seconds depending on the amount of data.
There are 2 commands, 'diagnose debug report' and 'execute tac report', which will print the same output.
 
execute tac report
 
Or run
diagnose debug report
 
 
For v6.2.3, v6.4, v7.0 and v7.2 branch:
 
Go to System -> Settings -> Debug Logs and select the 'Download' button.
 
 

 

 

For FortiOS 7.4.x and 7.6.x :

 

Go to System -> Settings -> FortiCare Debug Report and then select the 'Download' option. It is also possible to download it by clicking on the question mark on the top right and selecting FortiCare Debug Report.

debug log.PNG

 

 

Related articles:

Technical Note: How to create a log file of a session using PuTTY
Technical Tip: How to download Logs from FortiGate GUI. 

 

Related video:

 

64406
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.