FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
ajoe
Staff
Staff
Article Id 190516

Description

 

This article explains how to set up the sample rate for Netflow.

 

Scope

 

FortiGate.

Solution

 

  • NetFlow on FortiGate, exports all the information about sessions depending on netflow-sampler interface monitoring configuration.
  • Netflow on FortiGate does not support the sampling rate below v7.6. sflow supports packet sampling at a configurable rate for all versions.

  From v7.6.x onward the following CLI options can be used to control the sample rate:

 

config system interface
    edit <interface name>
        set netflow-sampler {tx | rx | both}
        set netflow-sample-rate <integer>
        set netflow-sampler-id <integer>
    next
end

 

Related document:

Netflow sampling