I just got this log entry under Log & Report -> Security Log ->
AntiVirus: Checksum 0 Date/Time 14:45:17 (1387464317) Details host:
66.96.160.153 Direction N/A Dst 66.96.160.153 Dst Interface ISP-Colt Dst
Port 80 Identity Index 0 Level warning Log ID...
Not sure if this should go in Log & Report or here in VPN. It' s about
logs, generated by SSLVPN connections. I don' t understand why a certain
log entry (one extra new connection after closing an SSL VPN tunnel) is
created by activity on my SSLVPN. ...
This seems to be something which should be related to the FortiOS VPN
services, even if it might be implemented by the IPS capability. I say
this because it would be the FortiGate protecting itself, not
functioning as a gateway security appliance to ...
FortiOS 5.0.4, when I look in Log & Report -> Event Log -> VPN, there
does not seem to be any column which will show me the source IP address
of SSL VPN clients in a column. I can click on a specific entry and the
" Remote IP" is there. How do I get ...
FortiOS 5.0.4. I notice that webfilter entries for traffic which is not
blocked by the webfilter shows up in the logs as " passthrough" . e.g.:
Oct 30 11:14:50 192.168.1.4 date=2013-10-30 time=11:14:50
devname=FG100D3 devid=FG100D3 logid=0315013317 t...
@Dave Thanks. I agree with the analysis, and of course I could manually
track it down at the possible source/exposure point. What I' m hoping
for is that the data gathered by the FortiGate itself would be more
complete and actionable. " This IP might...
Hi oheigl, I' m not sure I know the difference between a " Dial" IPsec
connection and any other type of IPsec connection. Maybe this will
answer; we do not have any network-to-network VPNs. All of our VPNs are
for end-users on PCs, Macs, Linux machin...
Thanks Eric. That it' s possible is good to know, but sadly not very
helpful to the great majority of users. We purchase UTM products in
order to avoid having to invent our own Snort rules and otherwise spend
time developing and exercising highly tec...
I don' t use FortiCloud, so I can' t offer any help there. As for
extended-utm-log and log-all-url, note that my experience is with 5.0.4.
As noted elsewhere, the 5.0 series is very much evolving. I think I
recall that you were on an earlier 5.0 rele...
I notice (FortiOS 5.0.4) that the Log & Report -> Report -> Local menu
allows generation of a report with " Top Users By
Bandwidth" . Perhaps that meets your needs, Silver?
