Hi,
Can I receive emails if I don't receive traffic from a specific source for 1 hour for example?
Fortigate or FortiAnalyzer
Thanks.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi AMINET,
Thank you for reaching out. The email alerts can be setup based on specific logs or severity level of logs for example:
https://docs.fortinet.com/document/fortigate/7.4.3/administration-guide/526019/email-alerts
In the case of no traffic there are no logs specific to this event to be use a trigger or a critiria to send the email alert. If you are talking about an ipsec tunnel in this case the vpn event log does have Dead Peer Detection DPD logs which can be used with automation stitches to send email when ever the specific event shows up in logs:
Thank you,
saleha
Hi @AMINET ,
From FortiAnalyzer, it can be configured under event handler, but first need to setup the email alert profile.
For specific event like you mentioned, you can use generic-text-filter:
https://community.fortinet.com/t5/FortiAnalyzer/Technical-Note-How-to-configure-an-Event-Handler-wit...
Here are few examples event handler KB, you can use as reference:
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1688 | |
1087 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.