FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
spoojary
Staff
Staff
Article Id 333878
Description This article describes how to make FortiCloud logs visible when Logview stopped getting logs after the firmware upgrade. 
Scope FortiGate 7.2 or above.
Solution

Scenario:

After the firmware upgrade, logs are not visible on the FortiGate Cloud portal. 

Following are the steps to resolve the issue: 

  1. Verify that login is enabled on the firewall policy and that logs on the log settings are sent to the FortiGate Cloud. 
  2. If not, activate it under Security Fabric -> Fabric Connectors -> Logging settings.
     

Screenshot 2024-08-16 150009.png

 

Examine the output of the following command:

diag test app forticldd 2 

 

The output should show the server IP of the log controller. Set the source-ip in 'config log fortiguard settings' if needed, using the WAN public IP address.

 

sjajdjs.png

Then run the following commands:

 

diag test application forticldd 3

diag test application forticldd 2

 

  1. In the FortiGuard setting, unset the update-server location:

    config system fortiguard

        unset update-server-location

    end

Then run the following command 3 times: diag test application forticldd 3.

 

If the issue persists, toggle Fortigate Cloud logging off and on.

 

sadsd.png

 

The FortiGuard settings should show 'logging in progress'. If not, then reboot the FortiGates.