Hello all!Hope you all doing great. I have a
Fortigate/Fortimanager/Fortianalyzer combo in the organization I work.
My FortiManager was alerting some C&C callbacks based on webfilter logs.
I do not have the SOC license, but I do have an third party S...
Hello. We had a enviroment with some Fortigates of many models. The
whole enviroment is in 5.2.x. We are facing a problem with VDOM logging.
I need to keep in this fortigates 10 days of logs beyond the logs that
are sented to fortianalyzer. The issue...
Ok, but I am seeing some C&C callbacks on my manager. And when I go to
see the logs that generated the alert, that isnt any tdtype field on the
raw log either. And the event handler that generates this alerts uses
this field on the generic text field...
Hi Ken. This are the info I get with the commands you provide me:#
diagnose sys logdisk quota type quota(MB) usage(MB) ================
============ ============ ----- vdom Transparent ----- log disk quota 0
MB disk log: 0 385 dlp archive: 0 0 report...
emnoc wrote:Qs: Have you looked at vdom log override?What's happening in
with or without vdom ? What drives you at 10days? Can you use upload (
compress or not )? example ( multivdom ) config log disk setting set
status enable set ips-archive disable...