Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
jpierre
New Contributor

Created on ‎12-02-2010 05:15 PM

Web Filter Log - Allow Traffic?

Hi Guys, I have a web-filter policy setup with some specific UTM' s enabled and I have " Log Allowed Traffic" enabled on the individual UTM' s and then again under the Web Filter policy' s but I' m not seeing allowed web site traffic in the web filter log. I' m also not seeing it on my FortiAnalyzer. If I look at the traffic logs, I can see the allowed traffic but it only shows IP addreses, not the web URL' s. We have the requirement to report on users Internet habits at the request of managers so I really need to get this going. Any suggestions?
7200
0 Kudos
7 REPLIES 7
veechee
New Contributor

Created on ‎12-02-2010 07:26 PM

You need to enable logging in the Web Filter profile. Then you can pull host names and URLs out of the Web Filter log, not the Traffic log. In 4.0MR2, this is accessed by going to Web Filter -> Profile -> <profile name here>, select Edit and enable logging for all categories and classifications.
3008
0 Kudos
jpierre
New Contributor

Created on ‎12-02-2010 10:11 PM

Already done this veechee. I am using the Fortigate as a proxy with implicit proxy on the interface. Any more ideas?
3008
0 Kudos
Fullmoon
Contributor III
In response to jpierre

Created on ‎12-03-2010 12:44 AM

Aside from steps mentioned above for logging take a look also under Log&Report=>Log Config=>Log Settings=>Local Logging & Archiving=>Memory=>Minimum log level=>Information the hit the Apply button

Fortigate Newbie

Fortigate Newbie
3008
0 Kudos
Law_Kumar
New Contributor

Created on ‎12-03-2010 03:31 AM

You can see logs with web URL' s in FortiAnalyzer -> Log & Archive -> Log Access -> Web Filter tab. Web filter logs with complete URL will not display in Traffic Log. Reg, Law
Best Regards, Law
Best Regards, Law
3008
0 Kudos
veechee
New Contributor

Created on ‎12-03-2010 08:25 AM

If you don' t have a FortiAnalyzer, try the new hosted service to do logging and analyzing: https://fams.fortinet.com/. FortiGuard Analysis and Management Service is a hosted logging, reporting and backup solution. It requires no additional hardware, software or facilities and provides the service at the lowest possible cost for all size enterprises. There is a 90-day free trial and after that it' s about $300/year for 10 GB of storage.
3007
0 Kudos
ejhardin
Contributor
In response to veechee

Created on ‎12-03-2010 10:13 AM

I use the FAMS hosting and love it.
3007
0 Kudos
jpierre
New Contributor

Created on ‎12-15-2010 10:01 PM

I found the problem. I didn' t have an allow * in the URL filter so it wasn' t logging the traffic. I had allow enabled on the web filter itself with certain sites listed as blocked (Facebook etc.). Cheers!
3007
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.