Skip to main content

Configuring Fortigate FortiOS

This document outlines the configuration steps required to enable MOTADATA_NETFLOW flow export on Fortigate devices running FortiOS version 5.2 and above. Follow the provided commands to ensure successful integration with a ObserveOps (formerly known as AIOps) Flow Explorer server.

Configure MOTADATA_NETFLOW Export

  1. Configure MOTADATA_NETFLOW export settings:

    config system MOTADATA_NETFLOW
    set collector-ip {MFE ServerIP}
    set collector-port 2055
    set source-ip {IP address of Device}
    set active-flow-timeout 1
    set inactive-flow-timeout 15
    end

  2. For each interface, execute the following:

    config system interface
    edit <interface name>
    set MOTADATA_NETFLOW-sampler tx
    end

Configure for VDOM Environment

  1. For devices operating in a VDOM environment, use the following commands:

    config system vdom–MOTADATA_NETFLOW
    set vdom–MOTADATA_NETFLOW enable
    set collector-ip {MFE ServerIP}
    set collector-port 2055
    set source-ip loopback1
    end

  2. For each interface, execute the following:

    config system interface
    edit <interface name>
    set MOTADATA_NETFLOW-sampler tx
    end

Review MOTADATA_NETFLOW Configuration

To verify your MOTADATA_NETFLOW configuration, use the following commands in CLI mode:

diagnose test application sflowd 3
diagnose test application sflowd 4

After completing the configuration, MOTADATA_NETFLOW data will begin exporting, and you will start seeing results in the ObserveOps Flow Explorer UI.