Configure the FortiAnalyzer unit Configuring the FortiAnalyzer unit
FortiAnalyzer Version 3.0 MR3 Administration Guide
05-30003-0082-20060925 53
3 Set the following settings and select OK:
Configuring an aggregation server
The aggregation server is the FortiAnalyzer unit that receives the logs sent from
an aggregation client. FortiAnalyzer units such as the FortiAnalyzer-800 and
higher can be configured as aggregation servers.
To configure the aggregation client
1 Go to System > Config > Log Aggregation.
2 Select Enable log aggregation TO this FortiAnalyzer
3 Set the following settings and select OK:
IP Aliases
Use IP Aliases to assign a meaningful name to IP addresses. When configuring
reports, and viewing logs and content archives, select Resolve Host Name to view
the alias name rather than the IP address.
To define IP aliases
1 Go to System > Config > IP Aliases.
2 Select Create New.
3 Enter a name for the IP address in the Alias box.
4 Enter the IP address and select OK.
Importing an IP alias list file
For large listings of IP address and names, you can also import a text file
containing this information. This facilitates easier updating of large lists.
The contents of the text file should be in the format:
<ip address> <alias_name>
For example:
10.10.10.1 User_1
There should only be one IP address/user name entry per line.
Remote FortiAnalyzer IP Enter the IP address of the FortiAnalyzer unit acting as the
aggregation server.
Password Enter the password for the aggregation server.
Confirm Password Enter the password again for the aggregation server.
Aggregation daily at Select the time of the day when the aggregation client uploads
the logs to the aggregation server.
Aggregate now Select to send the logs to the aggregation server immediately.
Use this when you want to create a report on the server with the
most current log data.
Password Enter the password for the aggregation server.
Confirm Password Enter the password again for the aggregation server.
To Next Page
Loading...
Need help?
General