Fortinet white logo
Fortinet white logo

CLI Reference

config log fortianalyzer2 override-filter

config log fortianalyzer2 override-filter

Override filters for FortiAnalyzer.

config log fortianalyzer2 override-filter
    Description: Override filters for FortiAnalyzer.
    set severity [emergency|alert|...]
    set forward-traffic [enable|disable]
    set local-traffic [enable|disable]
    set multicast-traffic [enable|disable]
    set sniffer-traffic [enable|disable]
    set ztna-traffic [enable|disable]
    set http-transaction [enable|disable]
    set anomaly [enable|disable]
    set voip [enable|disable]
    set dlp-archive [enable|disable]
    set forti-switch [enable|disable]
    config free-style
        Description: Free style filters.
        edit <id>
            set category [traffic|event|...]
            set filter {string}
            set filter-type [include|exclude]
        next
    end
end

config log fortianalyzer2 override-filter

Parameter

Description

Type

Size

Default

severity

Log every message above and including this severity level.

option

-

information

Option

Description

emergency

Emergency level.

alert

Alert level.

critical

Critical level.

error

Error level.

warning

Warning level.

notification

Notification level.

information

Information level.

debug

Debug level.

forward-traffic

Enable/disable forward traffic logging.

option

-

enable

Option

Description

enable

Enable forward traffic logging.

disable

Disable forward traffic logging.

local-traffic

Enable/disable local in or out traffic logging.

option

-

enable

Option

Description

enable

Enable local in or out traffic logging.

disable

Disable local in or out traffic logging.

multicast-traffic

Enable/disable multicast traffic logging.

option

-

enable

Option

Description

enable

Enable multicast traffic logging.

disable

Disable multicast traffic logging.

sniffer-traffic

Enable/disable sniffer traffic logging.

option

-

enable

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

ztna-traffic

Enable/disable ztna traffic logging.

option

-

enable

Option

Description

enable

Enable ztna traffic logging.

disable

Disable ztna traffic logging.

http-transaction

Enable/disable log http-transaction messages.

option

-

enable

Option

Description

enable

Enable http transaction logging.

disable

Disable http transaction logging.

anomaly

Enable/disable anomaly logging.

option

-

enable

Option

Description

enable

Enable anomaly logging.

disable

Disable anomaly logging.

voip

Enable/disable VoIP logging.

option

-

enable

Option

Description

enable

Enable VoIP logging.

disable

Disable VoIP logging.

dlp-archive

Enable/disable DLP archive logging.

option

-

enable

Option

Description

enable

Enable DLP archive logging.

disable

Disable DLP archive logging.

forti-switch

Enable/disable Forti-Switch logging.

option

-

enable

Option

Description

enable

Enable Forti-Switch logging.

disable

Disable Forti-Switch logging.

config free-style

Parameter

Description

Type

Size

Default

id

Entry ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

category

Log category.

option

-

traffic

Option

Description

traffic

Traffic log.

event

Event log.

virus

Antivirus log.

webfilter

Web filter log.

attack

Attack log.

spam

Antispam log.

anomaly

Anomaly log.

voip

VoIP log.

dlp

DLP log.

app-ctrl

Application control log.

waf

Web application firewall log.

dns

DNS detail log.

ssh

SSH log.

ssl

SSL log.

file-filter

File filter log.

icap

ICAP log.

virtual-patch

Virtual patch log.

filter

Free style filter string.

string

Maximum length: 1023

filter-type

Include/exclude logs that match the filter.

option

-

include

Option

Description

include

Include logs that match the filter.

exclude

Exclude logs that match the filter.

config log fortianalyzer2 override-filter

config log fortianalyzer2 override-filter

Override filters for FortiAnalyzer.

config log fortianalyzer2 override-filter
    Description: Override filters for FortiAnalyzer.
    set severity [emergency|alert|...]
    set forward-traffic [enable|disable]
    set local-traffic [enable|disable]
    set multicast-traffic [enable|disable]
    set sniffer-traffic [enable|disable]
    set ztna-traffic [enable|disable]
    set http-transaction [enable|disable]
    set anomaly [enable|disable]
    set voip [enable|disable]
    set dlp-archive [enable|disable]
    set forti-switch [enable|disable]
    config free-style
        Description: Free style filters.
        edit <id>
            set category [traffic|event|...]
            set filter {string}
            set filter-type [include|exclude]
        next
    end
end

config log fortianalyzer2 override-filter

Parameter

Description

Type

Size

Default

severity

Log every message above and including this severity level.

option

-

information

Option

Description

emergency

Emergency level.

alert

Alert level.

critical

Critical level.

error

Error level.

warning

Warning level.

notification

Notification level.

information

Information level.

debug

Debug level.

forward-traffic

Enable/disable forward traffic logging.

option

-

enable

Option

Description

enable

Enable forward traffic logging.

disable

Disable forward traffic logging.

local-traffic

Enable/disable local in or out traffic logging.

option

-

enable

Option

Description

enable

Enable local in or out traffic logging.

disable

Disable local in or out traffic logging.

multicast-traffic

Enable/disable multicast traffic logging.

option

-

enable

Option

Description

enable

Enable multicast traffic logging.

disable

Disable multicast traffic logging.

sniffer-traffic

Enable/disable sniffer traffic logging.

option

-

enable

Option

Description

enable

Enable sniffer traffic logging.

disable

Disable sniffer traffic logging.

ztna-traffic

Enable/disable ztna traffic logging.

option

-

enable

Option

Description

enable

Enable ztna traffic logging.

disable

Disable ztna traffic logging.

http-transaction

Enable/disable log http-transaction messages.

option

-

enable

Option

Description

enable

Enable http transaction logging.

disable

Disable http transaction logging.

anomaly

Enable/disable anomaly logging.

option

-

enable

Option

Description

enable

Enable anomaly logging.

disable

Disable anomaly logging.

voip

Enable/disable VoIP logging.

option

-

enable

Option

Description

enable

Enable VoIP logging.

disable

Disable VoIP logging.

dlp-archive

Enable/disable DLP archive logging.

option

-

enable

Option

Description

enable

Enable DLP archive logging.

disable

Disable DLP archive logging.

forti-switch

Enable/disable Forti-Switch logging.

option

-

enable

Option

Description

enable

Enable Forti-Switch logging.

disable

Disable Forti-Switch logging.

config free-style

Parameter

Description

Type

Size

Default

id

Entry ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

category

Log category.

option

-

traffic

Option

Description

traffic

Traffic log.

event

Event log.

virus

Antivirus log.

webfilter

Web filter log.

attack

Attack log.

spam

Antispam log.

anomaly

Anomaly log.

voip

VoIP log.

dlp

DLP log.

app-ctrl

Application control log.

waf

Web application firewall log.

dns

DNS detail log.

ssh

SSH log.

ssl

SSL log.

file-filter

File filter log.

icap

ICAP log.

virtual-patch

Virtual patch log.

filter

Free style filter string.

string

Maximum length: 1023

filter-type

Include/exclude logs that match the filter.

option

-

include

Option

Description

include

Include logs that match the filter.

exclude

Exclude logs that match the filter.