Thanks for your response.
I understand that NFA uses port 9995 for flow collection. In the case of Fortigate, do we receive them through that port?
I asked the admin to send the flows to the port we've always used.
I don't know if the admin is sending me IPFIX. I'll request that as well.
Original Message:
Sent: Mar 12, 2025 12:24 AM
From: Rajani
Subject: NFA discovery
Hi,
Did you enable NetFlow/IPFIX on the interface where traffic flows?
if you enabled and still facing challenge
Check this from FortiGate CLI, you have to explicitly mention NFA collector IP's , else it won't collect data
Ensure FortiGate firewall allows Netflow traffic (UDP 2055) port
run netstat - an | grep 2055 on the NFA server to check if its listening
restart Netops NFA services once and see if it works
Regards
Rajani
Original Message:
Sent: Mar 11, 2025 06:24 PM
From: Jose Romero
Subject: NFA discovery
Dear Community, I am trying to register some equipment:
IOS version: FortiOS 7.2.9
Model: FortiGate 2600F
Manufacturer: Fortinet
Netflow version: V9
in NFA NetOps version 20.2 - CA Network Flow Analysis 10.0.5 (build23)
I see that packets from the equipment in question arrive via udp and I reach them using a snmget query, but I don't see anything reflected in NFA