I am using a fortigate 3810A with firmware 5.2.5. i am trying to send logs to syslog and fortianalyzer. But when i use the managment IP as the source-ip it gives me errors.
NG-IKY-FGT3810A-01 (setting) # set source-ip 10.206.1.1910.206.1.19 is not valid source ip.node_check_object fail! for source-ip 10.206.1.19
value parse error before '10.206.1.19'Command fail. Return code -8
config log syslogd setting set status enable set server "10.206.2.44" set reliable disable set port 514 set csv enable set facility local0 set source-ip 0.0.0.0end
please can anyone help with this.
Thank you so much Mamoon, the fortigate is an ISP firewall and there are a lot of vdoms on it.
Some sampling is shown below:
NG-IKY-FGT3810A-01 (vdom) # edit
I was able to do syslog logging through the VDOM, but i want to enable it globally to a single fortianalyzer and syslog
I just checked again, the ip address is associated with the root vdom and not any other vdom and it is manually assigned.
Thanks Mamoon for your help.
I was able to use the source-ip 'managment ip' for the root vdom, but i am able to see the root vdom on the fortianalyzer and also another vdom, i cant see the remaining vdoms on the fortigate. Also testing connectivity to the FAZ from fortigate still shows unable to retrieve faz status
Yes still enabled in global vdom.
Products Solutions Support Partners Threat Research Contact Us