Alert

Output

From Email Address When configuring the FortiAnalyzer unit to send an email alert message, enter the sender’s email address.

To Email Address

When configuring the FortiAnalyzer unit to send an email alert

 

message, enter the recipients’ email address.

Add

Select Add to add the destination for the alert message. Add as

 

many recipients as required.

Delete

Select a recipient from the Destination list and select Delete to

 

remove a recipient.

Include Alert Severity Select the alert severity value to include in the outgoing alert message information.

4Select OK.

Output

When the FortiAnalyzer unit receives a log messages meeting the alert event conditions, it sends an alert message as an email, syslog message or SNMP Trap, informing an administrator of the issue and where it is occurring.

You can configure the methods FortiAnalyzer units use to send alert messages. The FortiAnalyzer unit can send an alert message to an email address via SMTP, a Syslog server or as an SNMP Trap.

Configuring alerts by email server

You must first configure an SMTP server to configure the FortiAnalyzer unit to send email alert messages,

If the mail server is defined by a domain name, the FortiAnalyzer unit will query the DNS server to resolve the IP address of that domain name. In this case, you must also define a DNS server. See “DNS” on page 46 to configure a DNS server.

If sending an email by SMTP fails, the FortiAnalyzer unit will re-attempt to send the message every ten seconds, and never stop, until it succeeds in sending the message or the administrator reboots the FortiAnalyzer unit.

Note: Mail servers that you have defined for the FortiAnalyzer unit to be able to send alerts can also be selected when configuring report profiles and vulnerability scan jobs to email report output. For more information, see “Configuring vulnerability scan jobs” on page 162 and “Configuring reports” on page 113.

Figure 2: Mail server list

Delete

Edit

Test

FortiAnalyzer Version 3.0 MR7 Administration Guide

 

05-30007-0082-20080908

135

Page 143
Image 143
Fortinet 3.0 MR7 manual Output, Configuring alerts by email server, To Email Address, 135