FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
This article explains how to enable the 'config log fortianalyzer override-filter' command on FortiGate.
This command becomes available only when certain prerequisites are configured in the correct order within a Virtual Domain (VDOM).
Scope
FortiGate with VDOMs, FortiAnalyzer logging configuration.
Solution
To successfully configure the 'config log fortianalyzer override-filter', the following two settings must be enabled in order and within the same VDOM context:
'faz-override 'under the 'config log' setting.
status under 'config log fortianalyzer override-setting'.
Once both are enabled, the override-filter configuration becomes available.
Example Configuration:
Enter the target VDOM (e.g., test):
config vdom
edit test
Enable FortiAnalyzer override:
config log setting
set faz-override enable
end
Enable FortiAnalyzer override-setting and specify the server:
config log fortianalyzer override-setting
set status enable
set server "10.10.10.10"
end
The following command becomes accessible:
config log fortianalyzer override-filter
Verification:
Verify the configuration using the following commands:
