Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Buddhima
New Contributor II

How to get email (Automation) alert when public IP is unreachable

Hi,

I want to monitor a public IP from my FortiGate, and if the IP becomes unreachable, I want to automatically receive an email alert.

Is this possible using FortiGate Automation? If yes, how can I set it up?

FortiOS Version: 7.2.10

1 Solution
ozkanaltas
Valued Contributor III

Hi @Buddhima ,

 

You can review this document for how you create an automation stitch with event logs. 

 

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-view-full-FortiOS-event-logs-in-aut...

 

https://docs.fortinet.com/document/fortigate/7.6.3/administration-guide/950487/fortios-event-log-tri...

 

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW

View solution in original post

If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
5 REPLIES 5
ozkanaltas
Valued Contributor III

Hello @Buddhima ,

 

Normally, FortiGate doesn't support that feature natively. But I think you can use a workaround solution for that. 

 

FortiGate has a load balance feature, and that feature can monitor IP addresses in different ways. If you create a dummy load balance configuration and monitor public IP addresses, FortiGate will monitor these addresses. If FortiGate can't reach these IP addresses, FortiGate creates a service down log for a health check. 

 

And you can track these logs with the automation feature. You can create automation like that. If this log is created, send an email to this address. 

 

If this way is applicable to you, you can review this document on how you create a virtual server. 

 

https://docs.fortinet.com/document/fortigate/7.2.11/administration-guide/713497/virtual-server-load-...

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
Buddhima
New Contributor II

Thank you for your reply! is there any way to do it using performance SLA. after can we add it to automation somehow?

ozkanaltas
Valued Contributor III

Hello @Buddhima ,

 

I'm not sure because of that, I just think aloud. If the performance sla log is generated when the conditions are not met. Also, you can use performance sla. 

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
Buddhima
New Contributor II

hi ozkanaltas 

Thank you for your input!

I have already created the Performance SLA for the public IP, but I’m not sure how to create an Automation Stitch using the log entry generated by the SLA failure.

If there’s any documentation, guide, or example on how to use SLA logs for automation stitches, that would be very helpful.

ozkanaltas
Valued Contributor III

Hi @Buddhima ,

 

You can review this document for how you create an automation stitch with event logs. 

 

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-view-full-FortiOS-event-logs-in-aut...

 

https://docs.fortinet.com/document/fortigate/7.6.3/administration-guide/950487/fortios-event-log-tri...

 

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors