Skip to main content

Fortigate Firewall (sFlow) Configuration

This document outlines the steps to configure Fortigate Firewall for sFlow flow export with ObserveOps Flow Explorer.

Configuration Steps

Configure the sFlow collector settings:

config system sflow
set source-ip <device ip>
set collector-ip {MOTADATA_NETFLOW_SERVER_IP}
set collector-port 6343
end

Enable sFlow sampling on each interface:

config sys interface
edit {INTERFACE_NAME}
set sflow-sampler enable
set sample-rate 1000
set sample-direction both
set polling-interval 60
next
end

For VDOM environments, enable sFlow per VDOM:

config system vdom-sflow
set vdom-sflow enable
set collector-ip {MOTADATA_NETFLOW_SERVER_IP}
set collector-port 6343
end

After completing the configuration, navigate to Menu > Flow Explorer and select Explorer to view the active flow data.