Fortinet black logo

CLI Reference

Home FortiGate / FortiOS 6.2.15 CLI Reference

config log disk filter

6.2.15
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0
Copy Link
Copy Doc ID 045e9e5e-04b3-11ee-8e6d-fa163e15d75b:443620
Download PDF

config log disk filter

Configure filters for local disk logging. Use these filters to determine the log messages to record according to severity and type.

config log disk filter
    Description: Configure filters for local disk logging. Use these filters to determine the log messages to record according to severity and type.
    set admin [enable|disable]
    set anomaly [enable|disable]
    set auth [enable|disable]
    set chassis-loadbalance-ha [enable|disable]
    set cpu-memory-usage [enable|disable]
    set dhcp [enable|disable]
    set dlp-archive [enable|disable]
    set event [enable|disable]
    set filter {string}
    set filter-type [include|exclude]
    set forward-traffic [enable|disable]
    set gtp [enable|disable]
    set ha [enable|disable]
    set ipsec [enable|disable]
    set ldb-monitor [enable|disable]
    set local-traffic [enable|disable]
    set multicast-traffic [enable|disable]
    set pattern [enable|disable]
    set ppp [enable|disable]
    set radius [enable|disable]
    set severity [emergency|alert|...]
    set sniffer-traffic [enable|disable]
    set sslvpn-log-adm [enable|disable]
    set sslvpn-log-auth [enable|disable]
    set sslvpn-log-session [enable|disable]
    set system [enable|disable]
    set vip-ssl [enable|disable]
    set voip [enable|disable]
    set wan-opt [enable|disable]
    set wireless-activity [enable|disable]
end

config log disk filter

Parameter

Description

Type

Size

admin

Enable/disable admin login/logout logging.

option

-

Option

Description

enable

Enable admin login/logout logging.

disable

Disable admin login/logout logging.

anomaly

Enable/disable anomaly logging.

option

-

Option

Description

enable

Enable anomaly logging.

disable

Disable anomaly logging.

auth

Enable/disable firewall authentication logging.

option

-

Option

Description

enable

Enable firewall authentication logging.

disable

Disable firewall authentication logging.

chassis-loadbalance-ha *

Enable/disable chassis load balancer state changes logging.

option

-

Option

Description

enable

Enable chassis load balancer state changes logging.

disable

Disable chassis load balancer state changes logging.

cpu-memory-usage

Enable/disable CPU & memory usage logging every 5 minutes.

option

-

Option

Description

enable

Enable CPU & memory usage logging every 5 minutes.

disable

Disable CPU & memory usage logging every 5 minutes.

dhcp

Enable/disable DHCP service messages logging.

option

-

Option

Description

enable

Enable DHCP service messages logging.

disable

Disable DHCP service messages logging.

dlp-archive *

Enable/disable DLP archive logging.

option

-

Option

Description

enable

Enable DLP archive logging.

disable

Disable DLP archive logging.

event

Enable/disable event logging.

option

-

Option

Description

enable

Enable setting.

disable

Disable setting.

filter

Disk log filter.

string

Maximum length: 511

filter-type

Include/exclude logs that match the filter.

option

-

Option

Description

include

Include logs that match the filter.

exclude

Exclude logs that match the filter.

forward-traffic

Enable/disable forward traffic logging.

option

-

Option

Description

enable

Enable forward traffic logging.

disable

Disable forward traffic logging.

gtp *

Enable/disable GTP messages logging.

option

-

Option

Description

enable

Enable GTP messages logging.

disable

Disable GTP messages logging.

ha

Enable/disable HA logging.

option

-

Option

Description

enable

Enable HA logging.

disable

Disable HA logging.

ipsec

Enable/disable IPsec negotiation messages logging.

option

-

Option

Description

enable

Enable IPsec negotiation messages logging.

disable

Disable IPsec negotiation messages logging.

ldb-monitor

Enable/disable VIP real server health monitoring logging.

option

-

Option

Description

enable

Enable VIP real server health monitoring logging.

disable

Disable VIP real server health monitoring logging.

local-traffic

Enable/disable local in or out traffic logging.

option

-

Option

Description

enable

Enable local in or out traffic logging.

disable

Disable local in or out traffic logging.

multicast-traffic

Enable/disable multicast traffic logging.

option

-

Option

Description

enable

Enable multicast traffic logging.

disable

Disable multicast traffic logging.

pattern

Enable/disable pattern update logging.

option

-

Option

Description

enable

Enable pattern update logging.

disable

Disable pattern update logging.

ppp

Enable/disable L2TP/PPTP/PPPoE logging.

option

-

Option

Description

enable

Enable L2TP/PPTP/PPPoE logging.

disable

Disable L2TP/PPTP/PPPoE logging.

radius

Enable/disable RADIUS messages logging.

option

-

Option

Description

enable

Enable RADIUS messages logging.

disable

Disable RADIUS messages logging.

severity

Log to disk every message above and including this severity level.

option

-

Option

Description

emergency

Emergency level.

alert

Alert level.

critical

Critical level.

error

Error level.

warning

Warning level.

notification

Notification level.

information

Information level.

debug

Debug level.

sniffer-traffic

Enable/disable sniffer traffic logging.

option

-

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

sslvpn-log-adm

Enable/disable SSL administrator login logging.

option

-

Option

Description

enable

Enable SSL administrator logging.

disable

Disable SSL administrator logging.

sslvpn-log-auth

Enable/disable SSL user authentication logging.

option

-

Option

Description

enable

Enable SSL user authentication logging.

disable

Disable SSL user authentication logging.

sslvpn-log-session

Enable/disable SSL session logging.

option

-

Option

Description

enable

Enable SSL session logging.

disable

Disable SSL session logging.

system

Enable/disable system activity logging.

option

-

Option

Description

enable

Enable system activity logging.

disable

Disable system activity logging.

vip-ssl *

Enable/disable VIP SSL logging.

option

-

Option

Description

enable

Enable VIP SSL logging.

disable

Disable VIP SSL logging.

voip

Enable/disable VoIP logging.

option

-

Option

Description

enable

Enable VoIP logging.

disable

Disable VoIP logging.

wan-opt

Enable/disable WAN optimization event logging.

option

-

Option

Description

enable

Enable WAN optimization event logging.

disable

Disable WAN optimization event logging.

wireless-activity

Enable/disable wireless activity event logging.

option

-

Option

Description

enable

Enable wireless activity event logging.

disable

Disable wireless activity event logging.

* This parameter may not exist in some models.

Previous
Next

config log disk filter

Configure filters for local disk logging. Use these filters to determine the log messages to record according to severity and type.

config log disk filter
    Description: Configure filters for local disk logging. Use these filters to determine the log messages to record according to severity and type.
    set admin [enable|disable]
    set anomaly [enable|disable]
    set auth [enable|disable]
    set chassis-loadbalance-ha [enable|disable]
    set cpu-memory-usage [enable|disable]
    set dhcp [enable|disable]
    set dlp-archive [enable|disable]
    set event [enable|disable]
    set filter {string}
    set filter-type [include|exclude]
    set forward-traffic [enable|disable]
    set gtp [enable|disable]
    set ha [enable|disable]
    set ipsec [enable|disable]
    set ldb-monitor [enable|disable]
    set local-traffic [enable|disable]
    set multicast-traffic [enable|disable]
    set pattern [enable|disable]
    set ppp [enable|disable]
    set radius [enable|disable]
    set severity [emergency|alert|...]
    set sniffer-traffic [enable|disable]
    set sslvpn-log-adm [enable|disable]
    set sslvpn-log-auth [enable|disable]
    set sslvpn-log-session [enable|disable]
    set system [enable|disable]
    set vip-ssl [enable|disable]
    set voip [enable|disable]
    set wan-opt [enable|disable]
    set wireless-activity [enable|disable]
end

config log disk filter

Parameter

Description

Type

Size

admin

Enable/disable admin login/logout logging.

option

-

Option

Description

enable

Enable admin login/logout logging.

disable

Disable admin login/logout logging.

anomaly

Enable/disable anomaly logging.

option

-

Option

Description

enable

Enable anomaly logging.

disable

Disable anomaly logging.

auth

Enable/disable firewall authentication logging.

option

-

Option

Description

enable

Enable firewall authentication logging.

disable

Disable firewall authentication logging.

chassis-loadbalance-ha *

Enable/disable chassis load balancer state changes logging.

option

-

Option

Description

enable

Enable chassis load balancer state changes logging.

disable

Disable chassis load balancer state changes logging.

cpu-memory-usage

Enable/disable CPU & memory usage logging every 5 minutes.

option

-

Option

Description

enable

Enable CPU & memory usage logging every 5 minutes.

disable

Disable CPU & memory usage logging every 5 minutes.

dhcp

Enable/disable DHCP service messages logging.

option

-

Option

Description

enable

Enable DHCP service messages logging.

disable

Disable DHCP service messages logging.

dlp-archive *

Enable/disable DLP archive logging.

option

-

Option

Description

enable

Enable DLP archive logging.

disable

Disable DLP archive logging.

event

Enable/disable event logging.

option

-

Option

Description

enable

Enable setting.

disable

Disable setting.

filter

Disk log filter.

string

Maximum length: 511

filter-type

Include/exclude logs that match the filter.

option

-

Option

Description

include

Include logs that match the filter.

exclude

Exclude logs that match the filter.

forward-traffic

Enable/disable forward traffic logging.

option

-

Option

Description

enable

Enable forward traffic logging.

disable

Disable forward traffic logging.

gtp *

Enable/disable GTP messages logging.

option

-

Option

Description

enable

Enable GTP messages logging.

disable

Disable GTP messages logging.

ha

Enable/disable HA logging.

option

-

Option

Description

enable

Enable HA logging.

disable

Disable HA logging.

ipsec

Enable/disable IPsec negotiation messages logging.

option

-

Option

Description

enable

Enable IPsec negotiation messages logging.

disable

Disable IPsec negotiation messages logging.

ldb-monitor

Enable/disable VIP real server health monitoring logging.

option

-

Option

Description

enable

Enable VIP real server health monitoring logging.

disable

Disable VIP real server health monitoring logging.

local-traffic

Enable/disable local in or out traffic logging.

option

-

Option

Description

enable

Enable local in or out traffic logging.

disable

Disable local in or out traffic logging.

multicast-traffic

Enable/disable multicast traffic logging.

option

-

Option

Description

enable

Enable multicast traffic logging.

disable

Disable multicast traffic logging.

pattern

Enable/disable pattern update logging.

option

-

Option

Description

enable

Enable pattern update logging.

disable

Disable pattern update logging.

ppp

Enable/disable L2TP/PPTP/PPPoE logging.

option

-

Option

Description

enable

Enable L2TP/PPTP/PPPoE logging.

disable

Disable L2TP/PPTP/PPPoE logging.

radius

Enable/disable RADIUS messages logging.

option

-

Option

Description

enable

Enable RADIUS messages logging.

disable

Disable RADIUS messages logging.

severity

Log to disk every message above and including this severity level.

option

-

Option

Description

emergency

Emergency level.

alert

Alert level.

critical

Critical level.

error

Error level.

warning

Warning level.

notification

Notification level.

information

Information level.

debug

Debug level.

sniffer-traffic

Enable/disable sniffer traffic logging.

option

-

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

sslvpn-log-adm

Enable/disable SSL administrator login logging.

option

-

Option

Description

enable

Enable SSL administrator logging.

disable

Disable SSL administrator logging.

sslvpn-log-auth

Enable/disable SSL user authentication logging.

option

-

Option

Description

enable

Enable SSL user authentication logging.

disable

Disable SSL user authentication logging.

sslvpn-log-session

Enable/disable SSL session logging.

option

-

Option

Description

enable

Enable SSL session logging.

disable

Disable SSL session logging.

system

Enable/disable system activity logging.

option

-

Option

Description

enable

Enable system activity logging.

disable

Disable system activity logging.

vip-ssl *

Enable/disable VIP SSL logging.

option

-

Option

Description

enable

Enable VIP SSL logging.

disable

Disable VIP SSL logging.

voip

Enable/disable VoIP logging.

option

-

Option

Description

enable

Enable VoIP logging.

disable

Disable VoIP logging.

wan-opt

Enable/disable WAN optimization event logging.

option

-

Option

Description

enable

Enable WAN optimization event logging.

disable

Disable WAN optimization event logging.

wireless-activity

Enable/disable wireless activity event logging.

option

-

Option

Description

enable

Enable wireless activity event logging.

disable

Disable wireless activity event logging.

* This parameter may not exist in some models.

Previous
Next