Hi everybody,
I have issue with VPN SSL logs.
VPN logs are empty :(
I have check settings in Log&Report > Log Config > Log Settings checkbox VPN activity event are check and Event Logging, Enable All are checked too.
Why connections are not write in log ?
FortiGate 60C in 5.2.3
Thanks :)
What do you have enable in config log global setting for gui logs locations
e.g
config log setting
set gui-location "memory|fortiguard"
end
PCNSE
NSE
StrongSwan
Only memory is configured and don't have fortiguard
So do you have a tunnel-client enabled and authenticated?
( check in the vpn ssl monitor )
PCNSE
NSE
StrongSwan
Yes and when users is connected I see live connection in SSL VPN monitor.
But I want connection history :)
Hi, I have the same issue with a cluster of 310B under 5.2.5 ( was the same on 5.2.4 ). There is no hdd on the 310B so it only log to memory. I looked at my 60D that log to memory and to forticloud and this one shows SSLVPN logs. So I tested removing forticloud and sure enough it no longer log SSLVPN connection in logs. My 100D cluster log to disk and the SSLVPN logs are there. I guess for device that log only to memory we are out of luck. I did not find anything under CLI that would enable vpn under memory logs. Unfortunatelly there is too much traffic on my 310B cluster to do anything interesting with forticloud as after 20 minutes I bust my free space for the day. I might try removing logging from most items and see if I can make it last the day ( if I ever have time to play with that ! )
Try the following:
config system settings
set [size="2"][size="2"][size="2"]vpn-stats-log [/size][/size][/size]{ipsec | l2tp | pptp | ssl}
end
You can add multiple
No changes :(
Add also set vpn-stats-period 300
But no logs :(
Do you see other logs (traffic logs, security logs,..etc)?
Note: logging to memory is limited and old logs will be replaced very soon as logs will fill up the memory quickly, it's not like disk logging.
I recommend to upload logs to FortiCloud and check again. If still an issue may be upgrade to v5.2.5 will fix the issue or you will need to contact support to investigate.
Regards,
Yes, Traffic log, system log is ok.
I'vs create FortiCloud Account now, I initiate VPN SSL connection but it's not appear :(
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.