Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Administration Guide

Configuring log rate receiving limits

You can manually configure log rate limits for devices in an ADOM or for specific logging devices. By default, no rate limit is enforced.

When setting the log rate limit to manual in the CLI, you can specify a default device log rate and a per device/ADOM rate. Both a default and per device limit can be set simultaneously, in which case the per device limit will take priority for configured devices.

You can view configured logging rates in the CLI using the following command: diagnose test application fortilogd 17 and diagnose test application oftpd 17.

To configure the default device log rate limit:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode manual

set device-ratelimit-default <set the rate limit, for example 2000>

end

To configure the log rate limit per device:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode manual

config ratelimits

edit <rate limit profile, for example "1">

set filter-type devid

set filter <device serial number>

set ratelimit <set the rate limit, for example 3000>

next

end

To configure the log rate limit per ADOM:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode manual

config ratelimits

edit <rate limit profile, for example "1">

set filter-type adom

set filter <ADOM name>

set ratelimit <set the rate limit, for example 3000>

next

end

To disable the log rate limit:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode disable

end

Configuring log rate receiving limits

You can manually configure log rate limits for devices in an ADOM or for specific logging devices. By default, no rate limit is enforced.

When setting the log rate limit to manual in the CLI, you can specify a default device log rate and a per device/ADOM rate. Both a default and per device limit can be set simultaneously, in which case the per device limit will take priority for configured devices.

You can view configured logging rates in the CLI using the following command: diagnose test application fortilogd 17 and diagnose test application oftpd 17.

To configure the default device log rate limit:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode manual

set device-ratelimit-default <set the rate limit, for example 2000>

end

To configure the log rate limit per device:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode manual

config ratelimits

edit <rate limit profile, for example "1">

set filter-type devid

set filter <device serial number>

set ratelimit <set the rate limit, for example 3000>

next

end

To configure the log rate limit per ADOM:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode manual

config ratelimits

edit <rate limit profile, for example "1">

set filter-type adom

set filter <ADOM name>

set ratelimit <set the rate limit, for example 3000>

next

end

To disable the log rate limit:

In the FortiAnalyzer CLI, enter the following commands:

config system log ratelimit

set mode disable

end