Which statement correctly describes the use of reliable logging on FortiGate?

Which statement correctly describes the use of reliable logging on FortiGate?
A . Reliable logging is enabled by default in all configuration scenarios.
B . Reliable logging is required to encrypt the transmission of logs.
C . Reliable logging can be configured only using the CLI.
D . Reliable logging prevents the loss of logs when the local disk is full.

Answer: B

Explanation:

Reliable logging prevents the loss of logs when the local disk is full.

On a FortiGate device, reliable logging is a feature that helps to prevent the loss of log messages when the local disk is full. When reliable logging is enabled, the FortiGate will store log messages in a buffer until they can be written to the local disk. This helps to ensure that log messages are not lost due to a full disk, allowing administrators to maintain an accurate record of activity on the network.

Reliable logging is not enabled by default in all configuration scenarios, and it does not encrypt the transmission of logs or require the use of the CLI to be configured. However, it is a useful feature to enable in order to maintain a comprehensive record of activity on the network and help with troubleshooting and security analysis.

Reliable logging on FortiGate is used to prevent the loss of logs when the connection between FortiOS and FortiAnalyzer is disrupted. When reliable mode is enabled, logs are cached in a FortiOS memory queue. FortiOS sends logs to FortiAnalyzer, and FortiAnalyzer uses seq_no to track received logs.

The other statements are incorrect:

Reliable logging is not enabled by default in all configuration scenarios. It must be enabled explicitly. Reliable logging is not required to encrypt the transmission of logs. Encryption can be configured separately.

Reliable logging can be configured using the CLI or the FortiGate web interface.

The question is asking what describes the correct use meaning what is the main function of reliable logging wouldn’t that be preventing loss of logs since disk is full by sending to Analyzer making D the correct answer.

The question is asking what describes the correct use meaning what is the main function of reliable logging wouldn’t that be preventing loss of logs since disk is full by sending to Analyzer making D the correct answer.

You can encrypt the logs if you are sending your logs to cloud, but the main purpose of reliable logging is to make sure that all the logs you send are been received by the server.

You can encrypt the traffic, but it does not require, the most specific option is D.