what is root cause of automatically deleting elog file on fortianalyzer !?!?!
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
you mean for the FAZ system local log elog file or its received FGT elog file
for system local log, there has a disk usage check and default is 80%, if over 80%, then it starts to delete old elog file and only keep the current active one
get system locallog disk setting status : enable ... diskfull : overwrite log-disk-full-percentage: 80
for device log file, after device configured quota reached, FAZ will start to delete oldest raw log files if device configured for overwrite
Thanks
Simon
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1105 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.