Troubleshoot Log Settings
To troubleshoot the Client:
- Enable Send logs to your syslog server
- Verify you are using a valid remote server address
- Check if the GUI settings match CMDB settings:
- Send logs to FortiAnalyzer/FortiSIEM
Send logs to Syslog Server 1
An extra remote server setting which only set via CLI command
To view the traffic with the CLI:
diag sniffer packet any "udp and port 514" 3 0 a
To troubleshoot the server:
- Verify the sever has rsyslog installed.
-
Make sure udp port 514 is open
sudo ss -tulnp | grep "rsyslog"