Hello,
I'm struggling with log download from Fortianalyzer, where I don't want to download full spectrum of fields available in the logs. I thought that adjusting the columns settings would do the thing, however downloaded file still contains all columns and not the only I specified. Does anyone have experience in this matter how to adjust download log settings? I need to make the logs dump as light as possible.
You can download as CSV and remove fields using Excel or other methods
Boa pela link compartilhado.
I'm looking for different method as file I'm downloading has more than 3mln of records and Excel's maximum row limit is 1,048,576.
Hey wallaceee,
I didn't really find a method to specify what log fields should be included/excluded when manually downloading logs from FortiAnalyzer.
There are two options you could consider:
- downloading log files from Log View > Log Browse instead
-> those should contain all the entries you need (plus a lot extra) over multiple individual files; you could freely modify the files in a text-editor to get something more usable, and shouldn't run into particular size constraints as the individual files should only be up to a few hundred MB (depends a bit on your log settings)
- log forwarding to a syslog/CEF server
-> if you set up log forwarding on FortiAnalyzer to a syslog/CEF server (NOT another Analyzer) you have the option to set 'Enable Exclusions' and can specify fields there; those fields should then NOT be included in log messages forwarded to syslog/CEF
-> this wouldn't help much with an on-demand download scenario, but if you need to set up something more long-term with log messages and want to filter out fields, this would be the way to go
Just filter for the logs you want to view and then download only those logs in CSV. You do not need to download the entire logfile. Review the link I posted to understsand how to filter logs and set a timeframe.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.