±Forensic Focus Partners

Become an advertising partner

±Your Account


Forgotten password/username?

Site Members:

New Today: 0 Overall: 36595
New Yesterday: 4 Visitors: 168

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

Firewall Log Files - FortiGate

Computer forensics discussion. Please ensure that your post is not better suited to one of the forums below (if it is, please post it there instead!)
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts


Firewall Log Files - FortiGate

Post Posted: Dec 22, 14 18:35


Has anyone come across analysing firewall logs from a FortiGate router before? I am trying to ascertain the units measured in the fields 'sent' and 'received' - I would have expected bytes but in the files I am analysing I'm seeing mostly small numbers (e.g. in their hundreds) and the odd one or two large number (in their hundreds of thousands).

So this leaves me with either most are of a size less than a KB, with a few at say 400KB, or less than a MB, with a few at the say 400MB size. I've searched throughout various Fortigate pdf documentations on their logs and can't see the sent/received fields mentioned at all, nevermind what units they could be.

Fortigate support line were no use as I don't own the product myself, I'm just trying to analyse the log files!

Anyone got any experience of what the units would normally be in other firewall log files perhaps?


Page 1 of 1