Log types and subtypes
Log types each have a SQL table that can be specified when creating datasets.
Log types also include log sub-types, which are types of log messages that are within the main log type.
For more information on log types and subtypes, see the FortiAnalyzer and FortiGate Log Message Reference guides on the Fortinet Document Library.
Log types available in FortiAnalyzer datasets
Source |
Log type |
---|---|
FortiGate | Appevent |
Intrusion Prevention | |
Content Log | |
Data Leak Prevention | |
DNS | |
Email Filter | |
Event | |
FortiClient System Event |
|
FortiClient Security Event |
|
FortiClient Traffic |
|
File Filter |
|
GTP |
|
Vulnerability Scan |
|
Protocol |
|
SSH |
|
SSL |
|
Traffic |
|
Virus |
|
VoIP |
|
Web Application Firewall |
|
Web Filter |
|
Local Event |
|
FortiMail |
Email Filter |
Event |
|
History |
|
Virus |
|
FortiAnalyzer |
Appevent |
Event |
|
Local Event |
|
FortiWeb |
Intrusion Prevention |
Event |
|
Traffic |
|
FortiCache |
Appevent |
Intrusion Prevention |
|
Content Log |
|
Data Leak Prevention |
|
Email Filter |
|
Event |
|
Vulnerability Scan |
|
Traffic |
|
Virus |
|
VoIP |
|
Web Filter |
|
FortiClient |
FortiClient System Event |
FortiClient Security Event |
|
FortiClient Traffic |
|
Syslog |
Generic |
FortiManager |
Appevent |
Event |
|
FortiSandbox |
Event |
Vulnerability Scan |
|
Virus |
|
FortiDDoS |
Intrusion Prevention |
Event |
|
FortiAuthenticator |
Event |
FortiProxy
|
Appevent |
Intrusion Prevention |
|
Content Log |
|
Data Leak Prevention |
|
DNS |
|
Email Filter |
|
Event |
|
File Filter |
|
Vulnerability Scan |
|
Protocol |
|
SSH |
|
SSL |
|
Traffic |
|
Virus |
|
VoIP |
|
Web Filter |
|
FortiNAC |
Asset |
Event |
|
FortiFirewall |
DNS |
Event |
|
File Filter |
|
GTP |
|
SSH |
|
SSL |
|
Traffic |
|
FortiDeceptor |
Event |
Fabric |
Normalized |