| Description | This article describes how to make FortiCloud logs visible when Logview stopped getting logs after the firmware upgrade. |
| Scope | FortiGate 7.2 or above. |
| Solution |
Scenario: After the firmware upgrade, logs are not visible on the FortiGate Cloud portal. Following are the steps to resolve the issue:
Examine the output of the following command:
diagnose test app forticldd 2
The output should show the server IP of the log controller. Set the source-ip in 'config log fortiguard settings' if needed, using the WAN public IP address.
Then run the following commands:
diag test application forticldd 3 diag test application forticldd 2
Then run the following command 3 times:
diagnose test application forticldd 3.
If the issue persists, toggle Fortigate Cloud logging off and on.
The FortiGuard settings should show 'logging in progress'. If not, then reboot the FortiGates.
Important Note: If all the above settings are checked and still not receiving the logs on FortiGate Cloud, make sure that FortiGate is running the latest firmware if using a Free Subscription with FortiGate Cloud.
Starting from February 28, 2025, a FortiGate without an active FortiGate Cloud subscription is required to upgrade to the latest firmware patch within 7 days of a new GA patch release, or FortiGate Cloud services will be paused for that device.
This will affect the cloud retention service, where logs will not be forwarded to FortiCloud until the device is updated to the latest firmware patch if using a Free FortiGate Cloud account. More information can be found in Technical Tip: Security enforcement change for FortiGates provisioned to FortiGate Cloud without act....
Related articles: FortiGate Cloud subscription types - FortiGate Cloud documentation |
