Fortinet FortiGate-800 manual Recording logs in system memory, Log message levels, 312

Recording logs in system memory

If your FortiGate unit does not contain a hard disk, you can configure the FortiGate unit to reserve some system memory for storing current event, attack, antivirus, web filter, and email filter log messages. Logging to memory allows quick access to only the most recent log entries. The FortiGate unit can store a limited number of messages in system memory. After all available memory is used, the FortiGate unit deletes the oldest messages. If the FortiGate unit restarts, the log entries are lost.

Note: The FortiGate unit can record only the event and attack log messages in system memory.

To record logs in system memory

1Go to Log&Report > Log Setting.

2Select the Log to memory check box.

3Select the severity level for which you want to record log messages.

The FortiGate logs all levels of severity down to, but not lower than, the level you choose. For example, if you want to record emergency, alert, critical, and error messages, select Error.

See “Log message levels” on page 312.

4Select Config Policy.

To configure the FortiGate to filter the types of logs and events to record, use the procedures in “Filtering log messages” on page 313.

5Select Apply.

Log message levels

Table 43 lists and describes FortiGate log message levels.

Table 43: FortiGate log message levels