Set up the FortiAnalyzer-BigData network
To set up the network for FortiAnalyzer-BigData, users need to connect either a 10GE link with SFP, or 40GE link with QSFP, from Switch Module #2 to your public access switch, and then set up the external IP address via the FortiAnalyzer-BigData GUI. This setup requires two IPs from the same subnet for logging (Main Host) and management (Security Event Manager) access.
To set up the FortiAnalyzer-BigData network:
- From the FortiAnalyzer-BigData GUI, go to System Settings > Network.
- Change the Security Event Manager IP Address/Netmask and Gateway fields to your internal network.
This is the address of the FortiAnalyzer-BigData Security Event Manager which is responsible for serving the web GUI and performs various data processing and management workload.
- Change the Main Host IP Address/Netmask and Gateway fields to your internal network.
This is the address of the FortiAnalyzer-BigData Main host, which is responsible for collecting the log and serving the GUI for FortiView, LogView, Reports, and so on.
- Keep the default Administrative Access settings.
- Specify a Default Gateway and DNS Servers.
- Click Apply to save your changes.
- From your management computer, change the IP Address/Netmask to reconnect it to FortiAnalyzer-BigData.