Fortinet white logo
Fortinet white logo

Handbook

Configuring alert email settings

Configuring alert email settings

Alerts are emails sent to specified recipients when specified events are triggered.

The Alert Mail Settings > Mail Server tab sets up server settings for sending two types of Alert Mails:

  • Event logs (found in the Alert Mail Settings > Setting tab), with recipients in the Alert Mail Settings > Recipient tab. You can specify event categories that will result in an Alert Mail via the Setting tab.
  • Emailed Reports, defined in Log & Report > Report Configuration. Recipients and other email information is configurable in each Report.

Before you begin:

  • You must have Read-Write permission for Log & Report settings.
To configure alert email settings:
  1. Go to Log & Report > Log Configuration > Alert Email Settings.
  2. Complete the configuration under the tabs: Mail Server, Settings and Recipients as described in the table below.
  3. Save the configuration.

Alert mail configuration guidelines

Settings Guidelines
Mail Server
SMTP Server IP address or FQDN of an SMTP server (such as FortiMail) or email server that the appliance can connect to in order to send alerts and/or generated reports.
Port Listening port number of the server. Usually, SMTP is 25.
Email From Sender email address used in alert email.
Authentication Enable or disable authentication.

Note: FortiDDoS cannot use RADIUS, LDAP or TACACS+ as a client to authenticate to email servers. It can only do basic user/password authentication.
TLS Enable or disable TLS encryption for SMTPS. Normally, you will also change the Port setting above to Port 465.
SMTP Username Username for authentication to the SMTP server.
SMTP Password Password for authentication to the SMTP server.
Settings
By Category If Disabled, all Alert Events categories are sent based on the minimum severity selected (from 'Debug' to 'Emergency').
If Enabled, all events logs, no matter the severity, will be sent for the categories of events selected in the check-boxes.
Log Level (if Category is Disabled) Select the minimum log level severity to send Alert Emails for all events.
Category (if Category is Enabled) Select the categories to receive alerts for.
Interval time (min) If identical alerts are occurring continuously, select the interval between each email that will be sent while the event continues.
Recipient
Name Name of the recipient for Event Log (from Settings above) Alert Mails.

Report recipients are independent and are entered in the Report configuration.
Mail To Up to three recipient email addresses, one per field.

Tip: To temporarily disable alert emails, delete all recipients. This allows you to preserve the other SMTP settings in case you want to enable alert emails in the future.

To configure with the CLI:

config system mailserver

set address mail.fortinet.com

set username fddadmin

set password ENC EEntXbrVJmOnZq/xFo2nzhCBU+vonWAPzsKyXO6Qjn/ZUI3l5OrdmoW8TtZVxNDKQ5YRhJawR1ewflirKvCg2E31/puFUJ+OwQZpWQz5QzcZp+Bp

set from fortiddos@fortinet.com

end

config log alertemail setting

set categories ha admin diskfull healthcheck update default_gateway

set deferq-interval 50

end

config log alertemail recipient

edit admin

set address admin@fortiddos.com

next

end

Configuring alert email settings

Configuring alert email settings

Alerts are emails sent to specified recipients when specified events are triggered.

The Alert Mail Settings > Mail Server tab sets up server settings for sending two types of Alert Mails:

  • Event logs (found in the Alert Mail Settings > Setting tab), with recipients in the Alert Mail Settings > Recipient tab. You can specify event categories that will result in an Alert Mail via the Setting tab.
  • Emailed Reports, defined in Log & Report > Report Configuration. Recipients and other email information is configurable in each Report.

Before you begin:

  • You must have Read-Write permission for Log & Report settings.
To configure alert email settings:
  1. Go to Log & Report > Log Configuration > Alert Email Settings.
  2. Complete the configuration under the tabs: Mail Server, Settings and Recipients as described in the table below.
  3. Save the configuration.

Alert mail configuration guidelines

Settings Guidelines
Mail Server
SMTP Server IP address or FQDN of an SMTP server (such as FortiMail) or email server that the appliance can connect to in order to send alerts and/or generated reports.
Port Listening port number of the server. Usually, SMTP is 25.
Email From Sender email address used in alert email.
Authentication Enable or disable authentication.

Note: FortiDDoS cannot use RADIUS, LDAP or TACACS+ as a client to authenticate to email servers. It can only do basic user/password authentication.
TLS Enable or disable TLS encryption for SMTPS. Normally, you will also change the Port setting above to Port 465.
SMTP Username Username for authentication to the SMTP server.
SMTP Password Password for authentication to the SMTP server.
Settings
By Category If Disabled, all Alert Events categories are sent based on the minimum severity selected (from 'Debug' to 'Emergency').
If Enabled, all events logs, no matter the severity, will be sent for the categories of events selected in the check-boxes.
Log Level (if Category is Disabled) Select the minimum log level severity to send Alert Emails for all events.
Category (if Category is Enabled) Select the categories to receive alerts for.
Interval time (min) If identical alerts are occurring continuously, select the interval between each email that will be sent while the event continues.
Recipient
Name Name of the recipient for Event Log (from Settings above) Alert Mails.

Report recipients are independent and are entered in the Report configuration.
Mail To Up to three recipient email addresses, one per field.

Tip: To temporarily disable alert emails, delete all recipients. This allows you to preserve the other SMTP settings in case you want to enable alert emails in the future.

To configure with the CLI:

config system mailserver

set address mail.fortinet.com

set username fddadmin

set password ENC EEntXbrVJmOnZq/xFo2nzhCBU+vonWAPzsKyXO6Qjn/ZUI3l5OrdmoW8TtZVxNDKQ5YRhJawR1ewflirKvCg2E31/puFUJ+OwQZpWQz5QzcZp+Bp

set from fortiddos@fortinet.com

end

config log alertemail setting

set categories ha admin diskfull healthcheck update default_gateway

set deferq-interval 50

end

config log alertemail recipient

edit admin

set address admin@fortiddos.com

next

end