在 FortiGate/FortiOS 上配置流量导出

config system netflow
    set active-flow-timeout Timeout to report active flows (60 - 3600 sec, default = 1800).
    set inactive-flow-timeout Timeout for periodic report of finished flows (10 - 600 sec, default = 15).
    set template-tx-timeout Timeout for periodic template flowset transmission (60 - 86400 sec, default = 1800).
    set template-tx-counter Counter of flowset records before resending a template flowset record.
            config collectors
            edit <table value>
                set collector-ip <On-Premise Poller IP address>
                set collector-port <NetFlow collector port number>
                set source-ip <Source IP address for communication with the NetFlow agent>
                set interface-select-method auto
        end
end

config system netflow
    config collectors
        edit <id>
            set source-ip-interface <interface_name>
        next
    end
end

config system interface
edit <interface name>
set netflow-sampler bothend

config vdom
    edit root  (Modify root to the non-management VDOM name as needed.)
        config sys vdom-netflow
            set vdom-netflow enable   (This setting must be enabled before proceeding to the next setting.)
            set collector-ip <IP address>
            set collector-port 9996
            set source-ip <IP address>
        end
        config system interface
            edit wan1 ( Change the interface to the one to be used.)
                set netflow-sampler both
        end
end

diagnose test application sflowd 3
diagnose test application sflowd 4