Fortigate Firewall Configuration

You can perform Fortigate Firewall configuration using the following commands:

config system sflow
set source-ip <device ip>
set collector-ip {NETFLOW_SERVER_IP}
set collector-port {NETFLOW_SERVER_LISTENER_PORT}
end

Enter global configuration mode on the router or MSFC, and issue the following commands for each interface on which you want to enable flow:

config sys interface
edit {INTERFACE_NAME}
set sflow-sampler enable
set sample-rate 1000
set sample-direction both
set polling-interval 60
next
end

Issue the following commands for VDOM:

config system vdom-sflow
set vdom-sflow enable
set collector-ip {NETFLOW_SERVER_IP}
set collector-port {NETFLOW_SERVER_LISTENER_PORT}
end