...
Change VDOM
By default, user would logon to “root” vdom.
They need to make sure that Global vdom is selected.
User can do that by clicking on the dropdown on top left side and select the vdom root.
...
For Logs Configuration:
Click and expand "Log & Report" then click on 'Log Settings'
Add the CCE IP address
Check the option 'send logs to syslog'
Click Apply to save your settings.
...
Parameter | Description | Type | Size | Default |
|---|---|---|---|---|
collector-ip | Collector IP - Seceon CCE IP Address | ipv4-address | Not Specified | 0.0.0.0 |
collector-port | NetFlow collector port number. | integer | Minimum value: 0 Maximum value: 65535 | 9995 |
source-ip | Source IP address for communication with the NetFlow agent. | ipv4-address | Not Specified | 0.0.0.0 |
active-flow-timeout | Timeout to report active flows. | integer | Minimum value: 60 Maximum value: 3600 | 1800 |
inactive-flow-timeout | Timeout for the periodic report of finished flows. | integer | Minimum value: 10 Maximum value: 600 | 15 |
template-tx-timeout | Timeout for periodic template flow set transmission. | integer | Minimum value: 60 Maximum value: 86400 | 1800 |
template-tx-counter | The counter flow set records before resending a template flow set the record. | integer | Minimum value: 10 Maximum value: 6000 | 20 |
For Netflow configuration older version of FortiOS.
Click on the dashboard and scroll down to the CLI console
Click on the CLI console to connect.
To Configure Netflow, type the following commands on the console one after another. Make sure to replace <ipv4_addr> with CCE IP Address
config global Firewall (This step might not be required in some versions of FortiGate firewall)
config system netflow
set collector-ip <ipv4_address>
set collector-port 9995
end
To Enable Netflow, type the following
config system interface
edit <interface name> ....with all the interfaces to be configured
set netflow-sampler both
end
...