Fortinet black logo

Handbook

Home FortiDDoS-F 6.3.1 Handbook

Logs and reports overview

6.3.1
7.0.0
6.6.3
6.6.3
6.6.1
6.6.0
6.5.1
6.5.0
6.4.1
6.4.0
6.3.3
6.3.2
6.3.1
6.2.3
6.2.2
6.2.1
6.2.0
6.1.1
Copy Link
Copy Doc ID 603e8323-b78c-11ec-9fd1-fa163e15d75b:395667
Download PDF

Logs and reports overview

The FortiDDoS system supports the logging and reporting features you expect in a security appliance:

  • Local logging
  • Remote logging (syslog and SNMP traps)
  • FortiAnalyzer and FortiSIEM support (syslog only)
  • SNMP (MIB Queires, Alarm and Attack Log Traps)
  • Email Alerts (SMTP alerts for selected admin Events)
  • SQL Query support (expert only with support of development team)
  • Real-time system status and traffic monitoring
  • Configurable system event and security event logging
  • Filtering of log tables
  • Customizable, scheduled and Threshold-based reports, with multiple formats and delivery options

The table below details the remote logging and services available in the system as well as where they are configured:

Event Remote Logging Settings
CPU, Memory, Disk Capacity Alarms SNMP Traps System > SNMP > System Information / Config
Event Logs Syslog messages Log & Report > Log Configuration > Event Log Remote
Alert Email Messages (Selected Events) Log & Report > Log Configuration > Alert Email Settings
Attack Logs SNMP Traps Log & Report > Log Configuration > SNMP Trap Receivers
Syslog messages Log & Report > Log Configuration > DDoS Attack Log Remote

System Data Remote Queries Settings
Traffic Data and other info SNMP MIB Queries System > SNMP > System Information / Config
Previous
Next

Logs and reports overview

The FortiDDoS system supports the logging and reporting features you expect in a security appliance:

  • Local logging
  • Remote logging (syslog and SNMP traps)
  • FortiAnalyzer and FortiSIEM support (syslog only)
  • SNMP (MIB Queires, Alarm and Attack Log Traps)
  • Email Alerts (SMTP alerts for selected admin Events)
  • SQL Query support (expert only with support of development team)
  • Real-time system status and traffic monitoring
  • Configurable system event and security event logging
  • Filtering of log tables
  • Customizable, scheduled and Threshold-based reports, with multiple formats and delivery options

The table below details the remote logging and services available in the system as well as where they are configured:

Event Remote Logging Settings
CPU, Memory, Disk Capacity Alarms SNMP Traps System > SNMP > System Information / Config
Event Logs Syslog messages Log & Report > Log Configuration > Event Log Remote
Alert Email Messages (Selected Events) Log & Report > Log Configuration > Alert Email Settings
Attack Logs SNMP Traps Log & Report > Log Configuration > SNMP Trap Receivers
Syslog messages Log & Report > Log Configuration > DDoS Attack Log Remote

System Data Remote Queries Settings
Traffic Data and other info SNMP MIB Queries System > SNMP > System Information / Config
Previous
Next