Hi all,
I want to know the best practice of implementing firewalls logs in FortiSIEM.
I have 10 Firewalls Fortigates and all are loged in FortiAnalyser and my question is I configure syslog
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi Waloo
Regarding which logs you send, just send all logs to FortiSIEM, I mean UTM logs, all traffic logs, event logs, ... all, don't leave anything.
Regarding integration, check this for more details.
On the other hand you can also configure log forwarding from FAZ to FSM if you don't want to send to both from FGT.
Thx AEK for your repli.
My question is to Know the Best practice of intégration in fortiSIEM, to have logs from all firewalls FGT or only from FortiAnalyser.
And second question if I intégred only FortiAnalyser it's deduce only one licence or nombres of all firewalls ?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1647 | |
1070 | |
751 | |
443 | |
214 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.