config system syslog1 settings
Use this command to configure a general remote server which can receive syslogs. FortiNDR system will send logs with specified type and severity (only for ndr
type) to this remote server.
Syntax
config system syslog1 settings set ipaddr <ipv4mask> set port <int> set status {enable, disable} set type {event, malware, ndr} set ndr-severity {low, medium, high, critical} end
Variable |
Description |
Default |
---|---|---|
|
Profile name |
|
|
The IP address of the remote server. Only IPv4 is supported. |
|
|
The port number of the remote server for syslog services. |
|
|
Enable or disable sending logs to this remote server. |
|
|
FortiNDR supports three types of logs: Multiple choices are supported. |
|
|
Filtering by severity is supported when sending |
|