Enable sFlow on FortiGate

Reading Time: < 1 minute

Recent FortiOS release adds sFlow support to Fortinet’s FortiGate® appliances. The following commands configure a FortiGate to sample packets at 1-in-10, poll counters every 20 seconds, and send sFlow to an analyzer (10.0.0.35) over UDP using the default sFlow port (6343) :

config system sflow
   set collector-ip 10.0.0.35
   set collector-port 6343
end

Then for each interface :

config sys interface
    edit interfacename
       set sflow-sampler enable
       set sample-rate 10
       set sample-direction both
       set polling-interval 20
next end

Configure sFlow monitoring on all interfaces on the switch for full visibility. Packet sampling is implemented in hardware so all the interfaces can be monitored with very little overhead.

wpadmin
Author: wpadmin

You may also like

Introduction

Introduction

Reading Time: < 1 minute Revision 1.2.20 – (12-06-2016)   This document explains how to configure network devices such as Switches to send NetFlow or sFlow statistics […]

Enable Netflow on Palo Alto

Enable Netflow on Palo Alto

Reading Time: 2 minutes All Palo Alto Networks firewalls support NetFlow (Version 9) except the PA-4000 Series and PA-7000 Series firewalls. The firewalls support only unidirectional […]

Enable NetFlow on Cisco

Enable NetFlow on Cisco

Reading Time: 2 minutes To ensure that the necessary hardware is enabled, issue the show module command, as follows: show module all Mod Submodule Model Serial […]

Enable sFlow on HP

Enable sFlow on HP

Reading Time: < 1 minute The commands bellow only works on the 3500/5400/8200/6200 HP products. 1. Configure a destination : hp (config)# sflow 2 destination x.x.x.x 6343 The […]