Customizing the log view | Analysis |
Figure 30: Filter icons for logs
|
|
|
| |
Filter icon |
|
| ||
Filter icon | ||||
enabled | ||||
disabled | ||||
|
|
When filtering by source or destination IP, you can use the following in the filtering criteria:
•a single address (2.2.2.2)
•an address range using a wild card (1.2.2.*)
•an address range
You can also use a Boolean operator (“or”) to indicate mutually exclusive choices:
•1.1.1.1 or 2.2.2.2
•1.1.1.1 or 2.2.2.*
•1.1.1.1 or
To filter logs
1Go to Analysis > Log Viewer.
2Select a log type to view log messages from.
3Go to a column in the log type.
4Select the filter icon in that column’s heading.
5Using the arrows, move the appropriate keywords from Available Fields to Display Fields.
6Select Submit.
To clear log filters
1Go to Analysis > Log Viewer.
2Select the log type that contains the column filter that you want to clear.
3Go to the column.
4Select the filter icon in that column’s heading.
5Using the double arrows, move the keywords from Display Fields to Available Fields.
6Select Submit.
7Repeat steps 2 to 6 for each filter.
| FortiGuard Analysis and Management Service Version 1.2.0 Administration Guide |
64 |