| Description |
This article describes how to connect FortiDDoS to FortiAnalyzer and troubleshoot connectivity issues. |
| Scope | FortiDDoS, FortiAnalyzer. |
| Solution |
Section 1: FortiDDoS and FortiAnalyzer firmware compatibility.
As a General Rule, FortiAnalyzer must run a firmware release integrable with FortiDDoS.
Note: For more detail, see the 'Compatibility with FortiDDoS' document for FortiAnalyzer: FortiDDoS.
For the lab example, FortiAnalyzer v7.2.0 and FortiDDoS v6.6.3 have been used.
FortiAnalyzer v7.2.0:
FortiDDoS v6.6.3:
Section 2: Verify FortiAnalyzer configuration on the FortiDDoS.
From FortiAnalyzer, test the connectivity to FortiDDoS (FortiDDoS's IP in the lab: 192.168.91.55).
Configure FortiAnalyzer in FortiDDoS:
Go to FortiAnalyzer and authorize the FortiDDoS:
Section 3: Verify FortiDDoS and FortiAnalyzer connectivity.
Create a test NTP profile and delete them on FortiDDoS to generate logs to FortiAnalyzer:
Capture logs:
Run on the FortiAnalyzer CLI:
diag sniffer packet any ' port 514 and host 192.168.91.55' 3
Run on the FortiDDoS CLI:
diag sniffer packet any ' port 514 ' 3
Create an NTP profile test and delete it on the FortiDDoS.
FortiAnalyzer will show the related logs from FortiDDoS:
|
