I downloaded Fortigate for home use to see if it's better than my current firewall, but I think I'm stuck. I'm trying to send my logs to my syslog server, but want to limit what kinds of logs are sent. When I access the Fortigate GUI and go to the logging settings, I want to only receive user activity on my log device, but somehow when I uncheck everything except user activity, I continue to receive a lot of logs. Even when I uncheck everything, I'm still receiving logs, which stumps me. If I chose not to receive any kind of logs, why am I still receiving so many "notice" level logs and "forward" traffic logs?

Where are these logs coming from if I've already unchecked everything?

Please explain in simple terms, as I'm only an amateur playing around with tech.