Technical Tip: E-mail alert when WAN interface went down

Configuration.

1. Automation Trigger: Specify log event ID and it is possible to filter for specific interfaces here for example: WAN1.
2. Automation Action: Specify the Action taken by the FortiGate in the event of a specific event trigger.
3. Automation stitch: Bind automation trigger and stitch.

CLI configuration.

Note:

Event ID 22922 is for the link monitor configured here we can change it as per the requirement.

Note:

The email server config is not mentioned here, refer to docs.fortinet.com for the email server config.

GUI configuration - 

Navigate to Security Fabric -> Automation -> Action and select 'Create New'.

Select 'Email':

Enter the Email address where to get an E-mail alert:

Select Trigger and select 'Create New':

Name the trigger and add the Link monitor status under the event:

Select Stitch and then, select 'Create new'.

Add the trigger that was created in the above steps.

Add the action (Email) which was created in the above steps.

The Configuration is now complete:

Note:

GUI Test Automation Stitch would be greyed out for that, refer the following link:

Technical Tip: 'Test Automation Stitch' button is greyed out when trying to test a newly created aut...

When link monitor status is down event id 22922 is generated by the system which will trigger an e-mail configured in automation action.