Fortinet Document Library

Version:

Version:

Version:


Table of Contents

Hyperscale Firewall Guide

Download PDF
Copy Link

Multicast logging example

You can use multicast logging to simultaneously send session hardware logging log messages to multiple remote syslog or NetFlow servers.

Enable multicast logging by creating a log server group that contains two or more remote log servers and then set log-tx-mode to multicast:

config log npu-server

set log-processor {hardware | host}

config server-group

edit "log_ipv4_server1"

set log-format {netflow | syslog}

set log-tx-mode multicast

end

The following example shows how to set up two remote syslog servers and then add them to a log server group with multicast logging enabled. This configuration is available for both NP7 (hardware) and CPU (host) logging.

config log npu-server

set log-processor {hardware | host}

config server-info

edit 1

set vdom "root"

set ipv4-server <server-ip>

set source-port 8055

set dest-port 2055

set template-tx-timeout 60

next

edit 2

set vdom "root"

set ipv4-server <server-ip>

set source-port 8055

set dest-port 2055

set template-tx-timeout 60

end

end

config server-group

edit "Example-Multicast"

set log-format syslog

set log-tx-mode multicast

set server-number 2

set server-start-id 1

end

Multicast logging example

You can use multicast logging to simultaneously send session hardware logging log messages to multiple remote syslog or NetFlow servers.

Enable multicast logging by creating a log server group that contains two or more remote log servers and then set log-tx-mode to multicast:

config log npu-server

set log-processor {hardware | host}

config server-group

edit "log_ipv4_server1"

set log-format {netflow | syslog}

set log-tx-mode multicast

end

The following example shows how to set up two remote syslog servers and then add them to a log server group with multicast logging enabled. This configuration is available for both NP7 (hardware) and CPU (host) logging.

config log npu-server

set log-processor {hardware | host}

config server-info

edit 1

set vdom "root"

set ipv4-server <server-ip>

set source-port 8055

set dest-port 2055

set template-tx-timeout 60

next

edit 2

set vdom "root"

set ipv4-server <server-ip>

set source-port 8055

set dest-port 2055

set template-tx-timeout 60

end

end

config server-group

edit "Example-Multicast"

set log-format syslog

set log-tx-mode multicast

set server-number 2

set server-start-id 1

end