Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiProxy 7.4.5 Administration Guide
    7.4.5
    7.6.0
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.0
    7.0.19
    7.0.17
    7.0.0
    2.0.0
    1.2.0
    1.1.0
    1.0.0

    Email Alert Settings

    Email Alert Settings

    Alert email messages provide notification about activities or events logged, including the log severity level, such as a critical or emergency. You can send alert email messages to up to three email addresses. Alert messages are also logged and can be viewed from the System Events log file.

    You can use the alert email feature to monitor logs for log messages, and to send email notification about a specific activity or event logged. For example, if you require notification about administrators logging in and out, you can configure an alert email that is sent whenever an administrator logs in and out. You can also base alert email messages on the severity levels of the logs.

    To configure email notifications:
    1. Configure email service:

      1. Go to System > Setting.

      2. Under Email Service, configure the SMTP server so that FortiProxy knows exactly where the email will be sent from and who to send it to. By default, the notification.fortinet.net SMTP server is selected and used.

        If your environments has specific email routing requirements, enable Use Custom Email Server and configure a custom SMTP server.

        note icon

        FortiProxy does not currently support SSL/TLS connections for SMTP servers. If the configured SMTP server requires SSL/TLS connections, the alert email configuration will not work.

    2. Configure at least one DNS server if you are configuring with an Fully Qualified Domain Server (FQDN). The FortiProxy unit uses the SMTP server name to connect to the mail server, and must look up this name on your DNS server. You can also specify an IP address.

    3. Configure alert email for IPsec tunnel errors, firewall authentication failure, configuration changes and FortiGuard license expiry:
      1. In Log & Report > Email Alert Settings, toggle Enabled.
      2. Configure the email alert settings as described in the table.

        From

        Enter the source email address.

        To

        Enter up to three target email addresses.

        Alert parameter

        If you select Events, enter the number of minutes in Interval and enable the events that will cause email alerts to be sent.

        If you select Severity, select the event priority level for email alerts to be sent in the Minimum level drop-down list. The priority level indicates the immediacy and the possible repercussions of the event. There are eight priority levels from Debug (lowest priority) to Emergency (highest priority). The default priority level is Alert.

        Interval

        Select the number of minutes between email alerts, from 1 to 99,999 minutes. The default is 5 minutes.

        If the FortiProxy unit collects more than one log message before an interval is reached, the FortiProxy unit combines the messages and sends out one alert email.

        Intrusion detected

        Enable to send an email alert when an intrusion is detected.

        Virus detected

        Enable to send an email alert when a virus is detected.

        Web Filter blocked traffic

        Enable to send an email alert when a web filter blocked traffic.

        Policy denied traffic

        Enable to send an email alert when a policy denied traffic.

        Disk usage exceeds

        Enable and enter a percentage to send an email alert when the disk usage exceeds the specified level. The default is 75%.

        FortiGuard renewal due within

        Enable and enter the number of days to send an email alert before FortiGuard must be renewed.

        Administrator login/logout

        Enable to send an email alert when an administrator logs in or out of the FortiProxy unit.

        Configuration change

        Enable to send an email alert when the FortiProxy configuration has been changed.

        Firewall authentication failure

        Enable to send an email when traffic fails authentication.

        HA status change

        Enable to send an email when there is a change in the HA status.

      3. Click Apply to save your changes.

    Previous
    Next

    Email Alert Settings

    Email Alert Settings

    Alert email messages provide notification about activities or events logged, including the log severity level, such as a critical or emergency. You can send alert email messages to up to three email addresses. Alert messages are also logged and can be viewed from the System Events log file.

    You can use the alert email feature to monitor logs for log messages, and to send email notification about a specific activity or event logged. For example, if you require notification about administrators logging in and out, you can configure an alert email that is sent whenever an administrator logs in and out. You can also base alert email messages on the severity levels of the logs.

    To configure email notifications:
    1. Configure email service:

      1. Go to System > Setting.

      2. Under Email Service, configure the SMTP server so that FortiProxy knows exactly where the email will be sent from and who to send it to. By default, the notification.fortinet.net SMTP server is selected and used.

        If your environments has specific email routing requirements, enable Use Custom Email Server and configure a custom SMTP server.

        note icon

        FortiProxy does not currently support SSL/TLS connections for SMTP servers. If the configured SMTP server requires SSL/TLS connections, the alert email configuration will not work.

    2. Configure at least one DNS server if you are configuring with an Fully Qualified Domain Server (FQDN). The FortiProxy unit uses the SMTP server name to connect to the mail server, and must look up this name on your DNS server. You can also specify an IP address.

    3. Configure alert email for IPsec tunnel errors, firewall authentication failure, configuration changes and FortiGuard license expiry:
      1. In Log & Report > Email Alert Settings, toggle Enabled.
      2. Configure the email alert settings as described in the table.

        From

        Enter the source email address.

        To

        Enter up to three target email addresses.

        Alert parameter

        If you select Events, enter the number of minutes in Interval and enable the events that will cause email alerts to be sent.

        If you select Severity, select the event priority level for email alerts to be sent in the Minimum level drop-down list. The priority level indicates the immediacy and the possible repercussions of the event. There are eight priority levels from Debug (lowest priority) to Emergency (highest priority). The default priority level is Alert.

        Interval

        Select the number of minutes between email alerts, from 1 to 99,999 minutes. The default is 5 minutes.

        If the FortiProxy unit collects more than one log message before an interval is reached, the FortiProxy unit combines the messages and sends out one alert email.

        Intrusion detected

        Enable to send an email alert when an intrusion is detected.

        Virus detected

        Enable to send an email alert when a virus is detected.

        Web Filter blocked traffic

        Enable to send an email alert when a web filter blocked traffic.

        Policy denied traffic

        Enable to send an email alert when a policy denied traffic.

        Disk usage exceeds

        Enable and enter a percentage to send an email alert when the disk usage exceeds the specified level. The default is 75%.

        FortiGuard renewal due within

        Enable and enter the number of days to send an email alert before FortiGuard must be renewed.

        Administrator login/logout

        Enable to send an email alert when an administrator logs in or out of the FortiProxy unit.

        Configuration change

        Enable to send an email alert when the FortiProxy configuration has been changed.

        Firewall authentication failure

        Enable to send an email when traffic fails authentication.

        HA status change

        Enable to send an email when there is a change in the HA status.

      3. Click Apply to save your changes.

    Previous
    Next