FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
This article describes the case when FortiGate does not display logs from FortiAnalyzer at Forward Traffic.
In some scenarios, it is possible to see the logs at the FortiAnalyzer unit under Log View -> FortiGate -> Traffic.
When going to the FortiGate unit under Log&Report -> Forward Traffic -> Add Filter: filter following the IP address with source or destination as desired. However, the same logs are not displayed as it was for FortiAnalyzer.
Go to FortiGate unit -> Log&Report -> Forward Traffic -> Add Filter: filter following source or destination IP address as desired -> Add Filter: Date/Time -> Choose 'Last 24 hours'.
Then it will be possible to see the logs at the FortiGate unit to be the same as the logs at the FortiAnalyzer unit under Log View -> FortiGate -> Traffic after that.
The reason is at FortiGate unit v7.0.x -> Log&Report -> Forward Traffic, for FortiAnalyzer log location, the default time range for log viewer is 1 hour. If it is desired to see the old logs, select 'Add Filter' and 'Date/Time' defined as 'Last 24 hours'. Then it will be possible to see more logs at the FortiGate unit.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.