Hi,
We have a Fortigate 100D and I have an issue with how the logging of traffic is stored in the Traffic log.
I' m trying to check what external connections have been made to our mail server in the traffic log report. When I check the report and filter by the destination IP address using our mail server internal IP address, I only see the blocked connections (which are all valid).
If I filter the traffic log by destination IP address using our external IP address, I can then see all the successful connections to our mail server, plus all the other successful inbound connections.
So, is it possible to make successful inbound connections store the interal IP address for the connection like it does for blocked connections? It would make life so much easier checking the logs by only having to look in one place and getting all the data without having to apply further filters.
Regards,
Dale.