Help
FortiSASE
FortiSASE delivers both a consistent security posture and an optimal user experience for users working from anywhere. Secure your hybrid workforce by closing security gaps, plus simplify operations.
sjoshi
Staff
Staff

Created on ‎06-24-2025 05:32 AM

Article Id 397866

Troubleshooting Tip: Missing logging of private access traffic to hubs despite successful connectivity

Description

 

This article describes the issue where traffic initiated through Private Access to Hubs is successful (for example, ICMP, HTTP), but the corresponding logs are not visible in the Analytics Traffic Logs. It also outlines possible causes and troubleshooting steps.

 

Scope

 

FortiSASE.

 

Solution

 

Some user-initiated traffic towards Private Access to the Hub is not being logged.
Traffic flow is functioning correctly, but the logs for this traffic do not appear in FortiSASE.

 

For example user belonging to level 2 groups logs are appearing.

 

ab.PNG

 

But for users belonging to level 4 groups, logs are not appearing.

 

Go to the Private Access policy and check that Log Allowed Traffic is set to All sessions or Security Events.

 

For the Level 2 user group policy, 'Log Allowed Traffic' is set to 'All Sessions', which results in logs being visible for their traffic.

 

abcd.PNG

 

For the Level 4 user group, 'Log Allowed Traffic' is set to 'Security Events', which does not allow their traffic logs to be visible unless any security profile event is triggered. 

 

b.PNG

159
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.