Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Autumn 2024 badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Forums
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDevSec
- FortiDeceptor
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiHypervisor
- FortiGuard
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSRA
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiWebCloud
- Lacework
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- Re: days for generating a report on FAZ 400C
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
days for generating a report on FAZ 400C
Hi,
we have this kind of issues on our FORTIANALYZER since we have it, but actually it is extremly slow for generating reports, even very small ones. So It is difficult to understand. Generate a report can take until 14 days for 10 pages...
Could you telle me if there is any way to troubleshoot for one report how it has be made ?
Thanks in advance for the advices.
FAZ 400C
Logs /sec : often below the sustained Log rate of 200Actual Log insert time 14000 seconds. ( Working on a report for quite 3 days... )
Number of devices : 75 / 300 allowed
Gb / day : 2.41 / 15 Licensed
Firmware : v5.2.5-build3175 160119 (GA)
JS
Nominate a Forum Post for Knowledge Article Creation
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
20 REPLIES 20
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Hz,
We use monthly reports, actually nothing changed, the pending is growing very slowly :
FortiAnalyzer-400C # dia test app sqlrptcached 2 Number of log table read: all=4170(fortiview=2016, rpt=2154) pending=1923 Number of log table done: all=4169(fortiview=2016, rpt=2153)
I ask myself if we should not simply rebuild the database as it is explained in this KB : http://kb.fortinet.com/kb/documentLink.do?externalID=FD36458
I also saw something concerning the storage, maybe we have a storage issue ?
Total: 71 log devices, used=491253MB quota=754000MB ADOM Name ADOM OID Type UsedSpace(database) Quota(database) % Used root 3 FGT 280415MB 249720MB 112.29% rootp 10 FGT 0MB 0MB 0.00% FortiMail 1034 FML 5126MB 6000MB 85.43% FortiCache 1036 FCH 0MB 0MB 0.00% FortiWeb 1037 FWB 0MB 0MB 0.00% Syslog 1039 SYS 4195MB 6600MB 63.56% FortiClient 1040 FCT 0MB 0MB 0.00% FortiAnalyzer 1041 FAZ 0MB 0MB 0.00% FortiSandbox 1043 FSA 0MB 0MB 0.00% FortiCarrier 1045 FGT 0MB 0MB 0.00% Trapil 1239 FGT 111684MB 183600MB 60.83% FortiManager 1512 FMG 0MB 0MB 0.00% Total database usage: 12 ADOMs, used=401420MB quota=445920MB 90.02%. Total Quota Summary: Total Quota(MB) Allocated(MB) Available(MB) Allocate% 1690399 754000 936399 45 % System Storage Summary: Total(MB) Used(MB) Available(MB) Use% 1877791 656739 1221052 35 % Reserved space: 187392MB (10% of total space).
Before opening a case, I prefer trying doing things by myself if possible :)
Rebuilding database and less devices quotas could be good to do according to you ?
JS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi hz,
thanks for your reply, I have to plan this with my boss, I will update this thread as soon as possible.
See you
JS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I forgot to tell you something.
For storage issue, we can see that root database is overquota.
Then, here is the status of rebuild, it is old, isnt it ?
FortiAnalyzer-400C # diagnose sql status rebuild-db Rebuilding log SQL database accomplished on Thu Sep 4 11:41:38 2014
JS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes, you can try rebuild DB for sure. After rebuild DB, you can try to run the first report, this could take long time to finish, because all cache tables will be created during report running. But you will see must shorter time after the first report.
Regards,
hz
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi hz,
the rebuild is achieved. I have made some tests, I have understood the cause of my empty reports. It is due to a report group bad setup apparently. By rebuilding the cache for one week, ask for the week concerned report, after deleting report group setup, I have a report in one minute and 48 seconds. For me it is OK.
Could you give me an example of a working report group setup please ?
Thanks a lot in advance for your help.
JS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi JS,
I just noticed the "group by" has wrong config in you setting.
please try:
config system report group edit 1 set adom "Trapil" config group-by edit devid next edit vd end set report-like Rapport next edit 2 set adom root set case-insensitive disable config group-by edit devid next edit vd end set report-like "RAPPORT MENSUEL" end
regards,
hz
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi hz,
thanks for your reply, I will test the report group conf you gave to me next week, because I relaunched all my reports to give them to my customers. It is working actually.
I will inform you about report group certainly in 15 days for the monthly reports of last April month.
Thanks a lot for your help.
Best regards.
JS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello!
We have the same problem. We also have a 400C with about 600GB of logs for roughly 17 devices.
Reports that we generate (although alot of graphs) takes 2-3 days per device for the last month.
The problem I have concluded is that the hardware is shit slow. Nothing more to it. It can´t handle it well. The 400C as I see it is fit for 1 device, maby 2. Not more.
Fortunatly we have a new VM, custom built on our way in. Benched it yesterday and got the same report in 16 min.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi hz,
how are you ? :)
I have put you in attachment the report group test I have prepared for next month reports. Is this correct for you ?
5 Devices, trough the quite common title of reports, have been chosen for the test :
config system report group edit 1 set adom "root" set case-insensitive disable config group-by edit "devid" next edit "vd" next end set report-like "RAPPORT MENSUEL C" next end
JS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
hi hz,
For me it is solved. I have had all my reports. And my 5 devices in a report group got me quick reports and not empty this time. I have to generalize the configuration.
Thanks again !
Cheers :)
JS
Announcements
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
Related Posts
Labels
-
FortiGate
8,390 -
FortiClient
1,697 -
5.2
801 -
FortiManager
709 -
5.4
639 -
FortiAnalyzer
539 -
FortiSwitch
455 -
FortiAP
451 -
6.0
416 -
FortiClient EMS
397 -
5.6
362 -
FortiMail
308 -
6.2
251 -
FortiAuthenticator v5.5
234 -
SSL-VPN
210 -
5.0
196 -
FortiWeb
196 -
IPsec
180 -
FortiNAC
173 -
FortiGuard
133 -
6.4
128 -
SD-WAN
107 -
FortiGateCloud
100 -
FortiSIEM
98 -
FortiCloud Products
95 -
FortiToken
89 -
FortiAuthenticator
82 -
Customer Service
77 -
Wireless Controller
76 -
Firewall policy
69 -
4.0MR3
64 -
FortiProxy
57 -
FortiADC
52 -
High Availability
51 -
Fortivoice
50 -
FortiEDR
50 -
vlan
47 -
ZTNA
46 -
FortiSandbox
43 -
FortiExtender
43 -
FortiDNS
42 -
Routing
39 -
DNS
38 -
LDAP
38 -
BGP
37 -
FortiGate v5.4
35 -
FortiSwitch v6.4
34 -
SAML
32 -
Certificate
32 -
Authentication
31 -
Interface
31 -
NAT
30 -
SSO
29 -
FortiConnect
27 -
RADIUS
27 -
FortiLink
26 -
FortiWAN
25 -
FortiConverter
25 -
FortiGate v5.2
24 -
VDOM
24 -
Logging
24 -
Application control
24 -
Web profile
23 -
Virtual IP
22 -
FortiPAM
21 -
Fortigate Cloud
19 -
FortiSwitch v6.2
18 -
FortiPortal
18 -
FortiMonitor
18 -
SSL SSH inspection
18 -
Traffic shaping
17 -
FortiDDoS
15 -
OSPF
15 -
WAN optimization
15 -
FortiGate v5.0
14 -
IP address management - IPAM
14 -
SSID
13 -
Static route
13 -
System settings
13 -
FortiCASB
12 -
snmp
12 -
Automation
12 -
Admin
12 -
Web application firewall profile
12 -
FortiManager v5.0
11 -
FortiSOAR
11 -
FortiManager v4.0
10 -
FortiRecorder
10 -
IPS signature
10 -
4.0MR2
9 -
FortiGate v4.0 MR3
9 -
FortiWeb v5.0
9 -
FortiBridge
9 -
FortiAP profile
9 -
Proxy policy
9 -
RMA Information and Announcements
8 -
Security profile
8 -
Traffic shaping policy
8 -
Port policy
8 -
4.0
7 -
FortiDeceptor
7 -
FortiAnalyzer v5.0
7 -
FortiCache
7 -
Fabric connector
7 -
Intrusion prevention
7 -
Explicit proxy
6 -
DNS filter
6 -
trunk
6 -
Packet capture
6 -
Antivirus profile
6 -
FortiCarrier
5 -
FortiToken Cloud
5 -
FortiTester
5 -
Users
5 -
Traffic shaping profile
5 -
Email filter profile
5 -
Web rating
5 -
Fortinet Engage Partner Program
5 -
3.6
4 -
FortiScan
4 -
FortiDirector
4 -
Internet service database
4 -
Application signature
4 -
DLP sensor
4 -
Netflow
4 -
Replacement messages
4 -
FortiDB
3 -
FortiHypervisor
3 -
API
3 -
FortiNDR
3 -
NAC policy
3 -
DLP Dictionary
3 -
DLP profile
3 -
DoS policy
3 -
VoIP profile
3 -
Multicast routing
3 -
Cloud Management Security
3 -
FortiInsight
2 -
FortiAI
2 -
Kerberos
2 -
Authentication rule and scheme
2 -
Protocol option
2 -
TACACS
2 -
Schedule
2 -
SDN connector
2 -
Service
2 -
Zone
2 -
4.0MR1
1 -
FortiManager-VM
1 -
FortiCWP
1 -
Subscription Renewal Policy
1 -
Video Filter
1 -
Multicast policy
1 -
Vulnerability Management
1
Top Kudoed Authors
| User | Count |
|---|---|
| 1640 | |
| 1069 | |
| 751 | |
| 443 | |
| 210 |
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.