Can I create custom Fortianalyzer field-list for exclusions
I am trying to reduce the amount of logs sent from FAZ to SIEM via log forwarding, but would still like to forward all FGT logs to FAZ. I can configure log exclusion and set a field-list, but the field-list options are generic and not as granular as I would like (from what I can tell). Can I create a custom field-list that is more detailed, such as a particular destination IP?
I would really prefer the option to exclude based on FGT Internet Service category and destination IP, but am open to nay input.