Fortinet black logo

New Features

Send Netflow traffic to collector in IPv6 7.2.1

Copy Link
Copy Doc ID 77966226-6996-11ec-bdf2-fa163e15d75b:10327
Download PDF

Send Netflow traffic to collector in IPv6 7.2.1

Netflow traffic can be sent from the FortiGate to a collector using IPv6. Both the source and collector IP addresses can be IPv6 addresses.

When VDOMs are enabled, the source and collector IPv6 addresses can be configured globally or in individual VDOMs.

To set the Netflow collector and source IP addresses to IPv6 addresses:
config system netflow
    set collector-ip "2000:10:1:100::59"
    set source-ip "2000:10:1:100::9"
    set active-flow-timeout 60
    set template-tx-timeout 60
end
To confirm that the collector IP address is set to an IPv6 address on the FortiGate:
# diagnose test application sflowd 3
===== Netflow Vdom Configuration =====
Global collector:2000:10:1:100::59:[2055] source ip: 2000:10:1:100::9 active-timeout(seconds):60 inactive-timeout(seconds):15
____ vdom: root, index=0, is master, collector: disabled (use global config) (mgmt vdom)
   |_ coll_ip:[2000:10:1:100::59]:2055,src_ip:2000:10:1:100::9
   |_ seq_num:229 pkts/time to next template: 16/27
   |_ exported: Bytes:2477154, Packets:5618, Sessions:58 Flows:66
   |_ active_intf: 1
   |____ interface:port17 sample_direction:both device_index:17 snmp_index:17
To confirm that the collector IP address is an IPv6 address on the collector:

Send Netflow traffic to collector in IPv6 7.2.1

Netflow traffic can be sent from the FortiGate to a collector using IPv6. Both the source and collector IP addresses can be IPv6 addresses.

When VDOMs are enabled, the source and collector IPv6 addresses can be configured globally or in individual VDOMs.

To set the Netflow collector and source IP addresses to IPv6 addresses:
config system netflow
    set collector-ip "2000:10:1:100::59"
    set source-ip "2000:10:1:100::9"
    set active-flow-timeout 60
    set template-tx-timeout 60
end
To confirm that the collector IP address is set to an IPv6 address on the FortiGate:
# diagnose test application sflowd 3
===== Netflow Vdom Configuration =====
Global collector:2000:10:1:100::59:[2055] source ip: 2000:10:1:100::9 active-timeout(seconds):60 inactive-timeout(seconds):15
____ vdom: root, index=0, is master, collector: disabled (use global config) (mgmt vdom)
   |_ coll_ip:[2000:10:1:100::59]:2055,src_ip:2000:10:1:100::9
   |_ seq_num:229 pkts/time to next template: 16/27
   |_ exported: Bytes:2477154, Packets:5618, Sessions:58 Flows:66
   |_ active_intf: 1
   |____ interface:port17 sample_direction:both device_index:17 snmp_index:17
To confirm that the collector IP address is an IPv6 address on the collector: