User guide
ManageEngine Firewall Analyzer :: User Guide
232
Zoho Corp.
Configuring Fortinet Firewalls
Firewall Analyzer supports the following versions of FortiGate:
• FortiOS v2.5, 2.8, and 3.0
• Fortinet - 50,100, 200, 300, 400, 800
• Fortigate - 1000, 5000 series
Firmware v2.26 or later is required
Prerequisite to get Application report
Information about Applications like Skype, FaceBook, YouTube and application categories
accessed by users will be available in this report. This report is available for Fortigate
only. Ensure Application Control service in their Fortigate firewall is enabled to generate
the Application report.
Virtual Firewall (Virtual Domain) logs
There is no separate configuration required in Firewall Analyzer for receving logs from
Virtual Firewalls of the Fortinet physical device. For configuring High Availablity for
FortiGate Firewall with vdoms, refer the procedure given below.
Prerequisite to support vdom
In order to get the vdom support for Fortigate Firewall, ensure that the log format
selected is Syslog instead of WELF.
If Firewall Analyzer is unable to receive the logs from the Fortigate after configuring from
UI, please carryout the steps to configure it through command prompt
To determine the version number of the Fortigate that you are running, use the
command: get system status
Configuring the FortiGate Firewall
Follow the steps below to configure the FortiGate firewall:
1. Log in to the FortiGate web interface
2. Select Log & Report > Log Setting or Log & Report > Log Config > Log
Setting (depending on the version of FortiGate)
3. If you want to export logs in WELF format:
o Select the Log in WebTrends Enhanced Log Format or the
WebTrends checkbox (depending on the version of FortiGate)
o Enter the IP address of the syslog server