FortiOS: 6.2.8Model: 800D I've been trying to configure the syslog
filter to only send LOG_ID_TRAFFIC_END_FORWARD (0000000013) traffic logs
to my syslog server.In the Technical Tip: Using syslog filters on to
send only specific logs to syslog server,...
Thanks @gfleming. There seems to be a high degree of ambiguity in
Fortinet's configuration and documentation of log filters. I would love
to see them clear that up, because the solution to my question still
isn't clear.
@gfleming- I think you're right. If I just wanted to target 0000000013,
I probably wouldn't need the traffic-level. My ultimate goal is to
specify an event level (no logid filter), ips-level (no logid filter),
and isolate on 0000000013 for traffic. I...
