FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
edyrmishi
Staff
Staff
Article Id 412925
Description This article describes the FortiGate-side changes that commonly restore missing SD-WAN information in FortiAnalyzer's FortiView SD-WAN widgets.
Scope FortiGate, FortiAnalyzer.
Solution

Even if FortiAnalyzer successfully receives SD-WAN logs from the FortiGate, certain FortiView SD-WAN widgets, such as 'SD-WAN Health Overview' and 'Top SD-WAN SLA Issues' may still display no data.

 

FAZ LAB 1.png

 

Before the configuration changes described below are applied, the following prerequisites need to be met:

  • FortiAnalyzer is receiving SD-WAN logs from the FortiGate.
  • SLA logging is enabled on the FortiGate health checks.
  • Firewall policies that use an SD-WAN interface as the destination have Log All Sessions enabled.
  • SD-WAN interface members are assigned the WAN role.

 

If all of these prerequisites are met and the widgets still show no data, one of the following configuration changes needs to be applied to the FortiGate:

 

FortiAnalyzer serial number configuration:

 

config log fortianalyzer setting
    set serial <FortiAnalyzer Serial Number>
end

 

If the FortiAnalyzer serial number is not specified on the FortiGate or if Certificate Verification is disabled, the admin user/password needs to be entered under FortiAnalyzer -> Device Manager -> Edit Device (FortiGate).

 

The credentials specified here are used by FortiAnalyzer to login to the FortiGate and retrieve data via OFTP.

 

Once either of these changes is applied and the FortiAnalyzer has had sufficient time to process the logs, the affected SD-WAN widgets should begin displaying data.

 

FAZ LAB 2.png