FortiAnalyzer (FAZ) is Fortinet’s centralised log management and analytics platform. FortiGate firewalls send their logs to FAZ for storage, searching, and reporting.
What you use it for
- Searching historical traffic and security logs
- Investigating what policy traffic hit
- BGP/routing event logs
- VPN logs and dropouts
- Generating reports
FAZ vs FortiGate local logs
FortiGate local logs show less detail and are limited in retention. FAZ stores much more and lets you search across multiple firewalls.
Logging into FAZ
Usually done via the FortiGate GUI under Log & Report → Log Settings, or directly via the FAZ web interface.