Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
adeboer
New Contributor

Giant spike in logs being sent to FM

Hey All,

 

A couple days ago we got a massive spike of logs from live devices in the field and the logs were sent back to FM. I attached a screenshot of the jump and I was wondering if there is a way to pinpoint which device/devices caused this?

 

Thanks,

Alan

3 REPLIES 3
scao_FTNT
Staff
Staff

pls try "dia fortilogd msgrate-device"

 

Thanks

 

Simon

adeboer

That helped a lot. Thank you!

Pradhumna_FTNT

Hi Alan,

 

You can use this command,

 

diagnose fortilogd msgrate-device

diagnose fortilogd msgrate-type

 

You can also check if the severity in the log filter settings was changed.

config log fortianalyzer filter

set severity <information>  //ideal configuration

end

 

Regards, Pradhumna Chandra