Fortinet black logo

CLI Reference

Home FortiGate / FortiOS 6.0.0 CLI Reference

log filter

6.0.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0
Copy Link
Copy Doc ID c287b6bf-a995-11e9-81a4-00505692583a:747875
Download PDF

log filter

Use this command to select log messages in this VDOM for viewing or deletion. You can view one log category on one device at a time. Optionally, you can filter the messages to select only specified date ranges or severities of log messages. For traffic logs, you can filter log messages by source or destination IP address.

Commands are cumulative. If you omit a required variable, the command displays the current setting.

Use as many execute log filter commands as you need to define the log messages that you want to view.

Syntax

execute log filter category  Category.
        {category}   Category name, press enter for options.


execute log filter device  Device to get log from.
        {device}   Device name, press enter for options.


execute log filter dump  Dump current filter settings.


execute log filter field  Filter by field.
        {name}   Field name, press enter for options.
            {argument 1}   Field search argument 1, press enter for more help.
                {argument 2}   <argument 2>
                    {argument 3}   <argument 3>
                        {argument 4}   <argument 4>
                            {argument 5}   <argument 5>
                                {argument 6}   <argument 6>
                                    {argument 7}   <argument 7>


execute log filter ha-member  HA member.
        sn   Serial number of HA member.


execute log filter max-checklines  Maximum number of lines to check.
        number   0 or (100 - 1000000).


execute log filter reset  Reset filter.
        {enter|all|field}   <enter|all> to reset all, <field> to reset field only.


execute log filter show-utm-ref  Whether to show utmref field. This field contains the information to locate UTM logs for the traffic log
        number   0 or 1


execute log filter start-line  Start line to display.
        number   >=1


execute log filter view-lines  Lines per view.
        number   Number of lines to view (5 - 1000).
Previous
Next

log filter

Use this command to select log messages in this VDOM for viewing or deletion. You can view one log category on one device at a time. Optionally, you can filter the messages to select only specified date ranges or severities of log messages. For traffic logs, you can filter log messages by source or destination IP address.

Commands are cumulative. If you omit a required variable, the command displays the current setting.

Use as many execute log filter commands as you need to define the log messages that you want to view.

Syntax

execute log filter category  Category.
        {category}   Category name, press enter for options.


execute log filter device  Device to get log from.
        {device}   Device name, press enter for options.


execute log filter dump  Dump current filter settings.


execute log filter field  Filter by field.
        {name}   Field name, press enter for options.
            {argument 1}   Field search argument 1, press enter for more help.
                {argument 2}   <argument 2>
                    {argument 3}   <argument 3>
                        {argument 4}   <argument 4>
                            {argument 5}   <argument 5>
                                {argument 6}   <argument 6>
                                    {argument 7}   <argument 7>


execute log filter ha-member  HA member.
        sn   Serial number of HA member.


execute log filter max-checklines  Maximum number of lines to check.
        number   0 or (100 - 1000000).


execute log filter reset  Reset filter.
        {enter|all|field}   <enter|all> to reset all, <field> to reset field only.


execute log filter show-utm-ref  Whether to show utmref field. This field contains the information to locate UTM logs for the traffic log
        number   0 or 1


execute log filter start-line  Start line to display.
        number   >=1


execute log filter view-lines  Lines per view.
        number   Number of lines to view (5 - 1000).
Previous
Next