We have 4 fortigates which are configured to send all the logs to the FortiAnalyzer. The point is that we dont see any logs in "fortiview and log view", but the device is receiving logs. Its stuck like loading the information.
We also can not see the logs in the fortigate configuring the FortiAnalyzer like source.
Whats happening with the logs???
I attached a screenshot about that we see in fortiview.
Hi, Jesus, in your pic, if you click left tree bottom log view, what is displayed? and for that log view, left tree has a "Log Browse" link which is for device raw log files, can you also help do a check for that?
Hi, my client update me about this problem. ITs different behaviour.
This problem we have with the fortiazalyzer have been happening since I installed it and we didnt pay a lot of attention because we thought it was a blip, but we see this again and we dont know why; yesterday when I walked into the web console FAand . No logs showed none of the FG that we have set. Also going into the FGates could see nothing, as they are configured to send the FA real time and in turn show the logs that are in the FA.
This was well throughout the morning until after about three hours (more or less) finally appeared the logs in both FA and FG. From there, all right. Even today also continues to work well. The problem occurs when we are a long period of time (do not know tell you how) without access logs, or through FG or directly from FA.
Another symptom that something is wrong with the BB.DD. Internal FA is that there is a report that is released monthly and that most often gets stuck with the bar "in process" to mean. Yes it does well if just one day before the start of the report, we have the FA showing logs.
$ get system performance status
CPU states: 0% user 1% system 0% nice 99% idle
CPU0 states: 0% user 2% system 0% nice 98% idle
CPU1 states: 0% user 2% system 0% nice 98% idle
CPU2 states: 0% user 1% system 0% nice 99% idle
CPU3 states: 0% user 0% system 0% nice 100% idle
Memory states: 31% used
Average network usage: 80203 kbps in 1 minute, 84295 kbps in 10 minutes, 85175 kbps in 30 minutes
Average sessions: 28455 sessions in 1 minute, 27521 sessions in 10 minutes, 29024 sessions in 30 minutes
Average session setup rate: 150 sessions per second in last 1 minute, 168 sessions per second in last 10 minutes, 174 sessions per second in last 30 minutes
Virus caught: 0 total in 1 minute
IPS attacks blocked: 0 total in 1 minute
Uptime: 280 days, 5 hours, 23 minutes
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.