FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
ranand
Staff
Staff
Description This article describes when only local traffic is not showing in FortiCloud. 
Scope  
Solution

In some particular case, it is possible to do not see only forward traffic log in the FortiCloud account. 

 

On checking FortiGate's FortiGuard log and filter setting, all the neccessary options are set to enable. 

 

# config log fortiguard setting 

    set status enable 

    set ssl-min-proto-version default 

    set source-ip 0.0.0.0 

    set interface-select-method auto 

    set upload-option 5-minute 

    set priority default 

    set max-log-rate 0 

    set enc-algorithm high 

    set conn-timeout 10 

end 

 

# config log setting 

    set log-invalid-packet disable 

    set local-in-allow enable 

    set local-out enable 

end 

 

# config log fortiguard filter 

    set severity information 

    set local-traffic enable 

end 

 

However, still local-traffic will not shown in FortiCloud. 

 

Root cause of the issue is forticloud log upload-option is set to 5 minutes so only logs saved in locally by the FortiGate will be forwarded to cloud and in local log location setting local-traffic is disabled.

 

# config log memory filter 

    set local-traffic disable 

end

 

ranand_0-1637926228203.png

 

 

It is necessary to make sure local-traffic option enabled in local log location memory/disk. 

 

# config log memory filter 

    set severity information 

    set local-traffic enable 

end 

 

Contributors