Home > Uncategorized > sFlow Fortigate

sFlow Fortigate

You might be more interested in configuring a netflow generator with a spare box (for free).

Configure global sFlow settings

config system sflow
set collector-ip x.x.x.x
set collector-port xxxx (default udp/6343)
end

Configure per interface (try both sample-direction)

config sys interface
edit
set sflow-sampler [disable*|enable]
set sample-rate xxxx //sample ever xxxx packets
set sample-direction [tx|rx|both*]
set polling-interval xx //in secs
next
end

Configure per VDOM sFlow settings

config system vdom-sflow
set vdom-sflow [disable*|enable]
set collector-ip x.x.x.x
set collector-port xxxx
end

If interface sFlows are configured, they are honored first.

If a VDOM collector is configured, all interfaces in that VDOM sFlows will direct to that collector.

If there is no VDOM collector configured, then the management-VDOM collector is used.

Configuring sFlow collection on the “management-VDOM” (usually “Global”) [conf sys vdom-sflow], will apply to all VDOMs. (untested)


source: Fortigate KB article: How to configure sFlow on a FortiGate

Advertisements
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: