- KNOWLEDGE BASE
- DEVICE INTEGRATION
- FORTINET
-
START YOUR TRIAL
-
DEVICE INTEGRATION
-
CONNECTORS
-
DATA INGESTION
-
HUNTING WITH WORKBOOKS
-
ANALYZE IN STYLE
-
SECURITY MONITORING
-
OPERATIONS
-
MANAGE DASHBOARDS
-
MANAGE REPORTS
-
USER MANAGEMENT & ACCESS CONTROL
-
BILLING
-
MANAGING YOUR COMPONENTS
-
GETTING STARTED
-
INSTALLATION
-
SOLUTION DESIGN
-
AUTOMATION
-
TROUBLESHOOTING AND DEBUGGING
-
LICENSE MANAGEMENT
-
RELEASE NOTES
-
API
-
POLICIES
-
SECURITY BULLETINS
FortiWeb
FortiWeb Web Application Firewall delivers multi-layered application threat protection. The following configurations should be done to forward FortiWeb WAF logs to DNIF Adapter.
- Login to FortiWeb WAF using the web interface and navigate to Log&Report > Log Policy > Syslog Policy.
- To access this part of the web UI, Administrator’s account access profile should have Read and Write permission to items in the Log & Report category, click Create New.
- If the policy is new, in Policy Name, type the name of the policy as it will be referenced in the configuration.
- Click Create New
- In IP Address, enter the address of the DNIF Adapter.
- In Port, enter the listening port number of the Syslog server, by default the value is 514.
- Check Enable CEF Format checkbox to send log messages in CEF format.
- Click OK.
- Select the Severity Level.
- Select the facility identifier that the FortiWeb appliance will use to identify itself when sending log messages to DNIF server.
FortiWeb WAF logs are now streamed to DNIF