log traffic-log
Use this command to have the FortiWeb appliance record traffic log messages on its local disk. This command also lets you save packet payloads with the traffic logs.
Packet payloads supplement the log message by providing the actual data associated with the traffic log, which may help you to analyze traffic patterns.
You can view packet payloads in the
Packet Log column when viewing a traffic logs using the web UI. For details, see the
FortiWeb Administration Guide.
To use this command, your administrator account’s access control profile must have either
w or
rw permission to the
loggrp area. For more information, see
“Permissions”.
Syntax
config log traffic-log
end
Variable | Description | Default |
status {enable | disable} | Enable to record traffic log messages if disk log storage is enabled, and the logs meet or exceed the severity levels selected using config log disk. | disable |
packet-log {enable | disable} | Enable to keep packet payloads stored with their associated traffic log message. For information on obscuring sensitive information in packet payloads, see config log sensitive. | disable |
disk-log {enable | disable} | Enable to record traffic logs to the hard disk. Disable to record traffic logs only in available RAM. Caution: Frequent logging to the hard disk for long periods of time causes can result in premature failure of the hard disk. Enable this option only while necessary, and disable it when you are done. | disable |
Example
This example enables disk log storage, sets information as the minimum severity level that a log message must achieve for storage, enables recording of traffic logs and retention of all packet payloads along with the traffic logs.
config log disk
set status enable
set severity information
end
config log traffic-log
set status enable
set packet-log enable
set disk-log enable
end
Related topics