The command line interface in FortiOS doesn't seem to support this command.
Has anyone successfully installed Filebeat on FortiOS and if yes, how did you do it?
Hi there
The Fortinet module is NOT installed on the Fortinet devices, but is enabled on the server where you are running your Filebeat instance (which may or may not be the same server where your Logstash is running). You still need to get your Fortinet devices to send their logs (using syslog) to a server, and then you have two choices:
you can get some form of syslog receiver to receive the syslogs from the Fortigates, and write them to a file, and then get the Filebeat to read from those files or
Have the Filebeat listen directly on the incoming network port for the syslog messages (either port 514 or a dedicated port for the Fortinet logs) and process them directly.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
