FwA not showing data
Hello folks,
i am new to the firewall analyzer, but want to give it a try. I'd like to try the tool by analyzing our last sundays traffic logs from a cluster of Forti800's.
Since our FortiAnalyzer als well as our FortiGate cluster is already beyond high load, the poor thing, i do not want to burden them by sending logs to the FwA. So i tried to feed my testing instance of firewall analyzer by http with Forti logs taken from our DWH.
I copied those to a linux box, where i would gunzip them, then feed them to the firewall analyzer. The analyzer accepted them just fine, did some processing and generated reports (a least that's what it said).
The "imported logfiles" tab shows the logfiles as "Status: Import of log file completed", and they definitely span the time from sunday 00:00 to sunday 23:59 (23 logs of 200 MB each) - but the analyzer refuses to show any data collected from the logs. I tried to view different reports, generate own ones, and whatever else i could think of.
A "select * from FirewallRecords_20080129090953 limit 10" shows there are entries available, as is true for every other FirewallRecords-table.
So, what have i done wrong, any tips are very appreciated.
My thanks in advance, and best whishes from germany
Stefan
i am new to the firewall analyzer, but want to give it a try. I'd like to try the tool by analyzing our last sundays traffic logs from a cluster of Forti800's.
Since our FortiAnalyzer als well as our FortiGate cluster is already beyond high load, the poor thing, i do not want to burden them by sending logs to the FwA. So i tried to feed my testing instance of firewall analyzer by http with Forti logs taken from our DWH.
I copied those to a linux box, where i would gunzip them, then feed them to the firewall analyzer. The analyzer accepted them just fine, did some processing and generated reports (a least that's what it said).
The "imported logfiles" tab shows the logfiles as "Status: Import of log file completed", and they definitely span the time from sunday 00:00 to sunday 23:59 (23 logs of 200 MB each) - but the analyzer refuses to show any data collected from the logs. I tried to view different reports, generate own ones, and whatever else i could think of.
A "select * from FirewallRecords_20080129090953 limit 10" shows there are entries available, as is true for every other FirewallRecords-table.
So, what have i done wrong, any tips are very appreciated.
My thanks in advance, and best whishes from germany
Stefan
Topic Participants
support+user
New to M365 Manager Plus?
New to M365 Manager Plus?
New to RecoveryManager Plus?
New to RecoveryManager Plus?
New to Exchange Reporter Plus?
New to Exchange Reporter Plus?
New to SharePoint Manager Plus?
New to SharePoint Manager Plus?
New to ADManager Plus?