How to Eliminate Alarm Message: Log Database Exceeds Alarm Threshold Value

Here is an example of a full alarm message:

Current size (57197 MB) of traffic log database exceeds alarm threshold value(90%) of total allowed size(63072 MB).

• Logs are purged when the quota size is exhausted, which is why it has been recommended to set the overall quota to ~90% of the full disk. It is not a requirement to save space, but it is recommended to improve performance.
• Logs are purged to keep the log file as close to full as possible. If a partition is set to 100MB, the logs are not purged until the log file is 100% full (100MB+). The usage can be over the quota because indexing will take up space, but it does not use the purging mechanism as the normal log writes. If the index takes place, but no new logs come in, the usage can be over the quota, for example over 100MB, until the next log is written.  Once the next log is written, the system will purge enough logs and index files to get below the quota.
• If the amount of traffic logged is greater than what the firewall can delete this alarm will be generated, as explained above.

Turn off the alarm logs. Go to Device > Alarms, under log setting and uncheck the enable alarms check box. Note: This will not eliminate the issue.

The other option is to change the log storage size. Go to Device > Setup > Management. Note: This will not address the issue.