Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Theideman_FTNT

Syslog no longer in FGT GUI

I noticed that when I enable "Security Fabric" on my fortigate, the ability to set a syslog server via the GUI goes away. However, I can still set the syslog for cli. I'm assuming that when I enable the fabric that all logs are now sent to the FAZ. If my thinking is not correct, could someone please enlighten me. 

 

If that thinking is correct, is it better to forward logs from the FAZ to another syslog server of from the FGT via the CLI?

Thomas Heideman
1 REPLY 1
AlexC-FTNT
Staff
Staff

I did not test, but it seems you have this setup done: does the (log sending to) syslog stop woking in FortiGate with Security Fabric?

 

Considering the FortiGate sends logs to FAZ and Syslog, I expect the log traffic to double, and the workload on FortiGate to be increased. If by 'better' you mean to lower resource usage on FortiGate, then yes. Otherwise, if your FAZ is working at the limit, I guees FortiGate can take the responsibility. I guess it all depends on the devices.


- Toss a 'Like' to your fixxer, oh Valley of Plenty! and chose the solution, too00oo -
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors