Fortinet white logo
Fortinet white logo

CLI Reference

config log fortianalyzer override-filter

config log fortianalyzer override-filter

Override filters for FortiAnalyzer.

config log fortianalyzer override-filter
    Description: Override filters for FortiAnalyzer.
    set severity [emergency|alert|...]
    set forward-traffic [enable|disable]
    set local-traffic [enable|disable]
    set multicast-traffic [enable|disable]
    set sniffer-traffic [enable|disable]
    set http-transaction [enable|disable]
    set anomaly [enable|disable]
    set voip [enable|disable]
    set dlp-archive [enable|disable]
    set dns [enable|disable]
    set ssh [enable|disable]
    set filter {string}
    set filter-type [include|exclude]
end

config log fortianalyzer override-filter

Parameter

Description

Type

Size

severity

Lowest severity level to log.

option

-

Option

Description

emergency

Emergency level.

alert

Alert level.

critical

Critical level.

error

Error level.

warning

Warning level.

notification

Notification level.

information

Information level.

debug

Debug level.

forward-traffic

Enable/disable forward traffic logging.

option

-

Option

Description

enable

Enable forward traffic logging.

disable

Disable forward traffic logging.

local-traffic

Enable/disable local in or out traffic logging.

option

-

Option

Description

enable

Enable local in or out traffic logging.

disable

Disable local in or out traffic logging.

multicast-traffic

Enable/disable multicast traffic logging.

option

-

Option

Description

enable

Enable multicast traffic logging.

disable

Disable multicast traffic logging.

sniffer-traffic

Enable/disable sniffer traffic logging.

option

-

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

http-transaction

Enable/disable log http-transaction messages.

option

-

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

anomaly

Enable/disable anomaly logging.

option

-

Option

Description

enable

Enable anomaly logging.

disable

Disable anomaly logging.

voip

Enable/disable VoIP logging.

option

-

Option

Description

enable

Enable VoIP logging.

disable

Disable VoIP logging.

dlp-archive

Enable/disable DLP archive logging.

option

-

Option

Description

enable

Enable DLP archive logging.

disable

Disable DLP archive logging.

dns

Enable/disable detailed DNS event logging.

option

-

Option

Description

enable

Enable detailed DNS event logging.

disable

Disable detailed DNS event logging.

ssh

Enable/disable SSH logging.

option

-

Option

Description

enable

Enable SSH logging.

disable

Disable SSH logging.

filter

FortiAnalyzer log filter.

string

Maximum length: 511

filter-type

Include/exclude logs that match the filter.

option

-

Option

Description

include

Include logs that match the filter.

exclude

Exclude logs that match the filter.

config log fortianalyzer override-filter

config log fortianalyzer override-filter

Override filters for FortiAnalyzer.

config log fortianalyzer override-filter
    Description: Override filters for FortiAnalyzer.
    set severity [emergency|alert|...]
    set forward-traffic [enable|disable]
    set local-traffic [enable|disable]
    set multicast-traffic [enable|disable]
    set sniffer-traffic [enable|disable]
    set http-transaction [enable|disable]
    set anomaly [enable|disable]
    set voip [enable|disable]
    set dlp-archive [enable|disable]
    set dns [enable|disable]
    set ssh [enable|disable]
    set filter {string}
    set filter-type [include|exclude]
end

config log fortianalyzer override-filter

Parameter

Description

Type

Size

severity

Lowest severity level to log.

option

-

Option

Description

emergency

Emergency level.

alert

Alert level.

critical

Critical level.

error

Error level.

warning

Warning level.

notification

Notification level.

information

Information level.

debug

Debug level.

forward-traffic

Enable/disable forward traffic logging.

option

-

Option

Description

enable

Enable forward traffic logging.

disable

Disable forward traffic logging.

local-traffic

Enable/disable local in or out traffic logging.

option

-

Option

Description

enable

Enable local in or out traffic logging.

disable

Disable local in or out traffic logging.

multicast-traffic

Enable/disable multicast traffic logging.

option

-

Option

Description

enable

Enable multicast traffic logging.

disable

Disable multicast traffic logging.

sniffer-traffic

Enable/disable sniffer traffic logging.

option

-

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

http-transaction

Enable/disable log http-transaction messages.

option

-

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

anomaly

Enable/disable anomaly logging.

option

-

Option

Description

enable

Enable anomaly logging.

disable

Disable anomaly logging.

voip

Enable/disable VoIP logging.

option

-

Option

Description

enable

Enable VoIP logging.

disable

Disable VoIP logging.

dlp-archive

Enable/disable DLP archive logging.

option

-

Option

Description

enable

Enable DLP archive logging.

disable

Disable DLP archive logging.

dns

Enable/disable detailed DNS event logging.

option

-

Option

Description

enable

Enable detailed DNS event logging.

disable

Disable detailed DNS event logging.

ssh

Enable/disable SSH logging.

option

-

Option

Description

enable

Enable SSH logging.

disable

Disable SSH logging.

filter

FortiAnalyzer log filter.

string

Maximum length: 511

filter-type

Include/exclude logs that match the filter.

option

-

Option

Description

include

Include logs that match the filter.

exclude

Exclude logs that match the filter.