Created on 08-10-2024 01:51 PM Edited on 08-10-2024 01:52 PM By Jean-Philippe_P
Description | This article describes how to verify if the logs are being sent out from the FortiGate to the Syslog server. |
Scope | FortiGate. |
Solution |
Make sure FortiGate's Syslog settings are correct before beginning the verification. Technical Tip: How to configure syslog on FortiGate
For the traffic in question, the log is enabled. Technical Tip: View historic SSL VPN user connectivity logs
Troubleshooting Tip: Packet Capture on FortiOS GUI
As seen in the snippet of the packet capture below, tested a failed SSL VPN login with the username 'abcde' after initiating the capture. It is evident from the packet capture that FortiGate's specified port 515 was used to send logs to the Syslog server.
Related Articles: Technical Tip: How to configure syslog on FortiGate |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.