Description |
This article describes how to connect FortiDDoS to FortiAnalyzer and troubleshoot connectivity issues. |
Scope | FortiDDoS, FortiAnalyzer. |
Solution |
Section 1: FortiDDoS and FortiAnalyzer firmware compatibility.
As a General Rule, FortiAnalyzer must run a firmware release integrable with FortiDDoS.
Note: For more detail, see the 'Compatibility with FortiDDoS' document for FortiAnalyzer: FortiDDoS.
For the lab example, FortiAnalyzer v7.2.0 and FortiDDoS v6.6.3 have been used.
FortiAnalyzer v7.2.0:
FortiDDoS v6.6.3:
Section 2: Verify FortiAnalyzer configuration on the FortiDDoS.
From FortiAnalyzer, test the connectivity to FortiDDoS (FortiDDoS's IP in the lab: 192.168.91.55).
Configure FortiAnalyzer in FortiDDoS:
Go to FortiAnalyzer and authorize the FortiDDoS:
Section 3: Verify FortiDDoS and FortiAnalyzer connectivity.
Create a test NTP profile and delete them on FortiDDoS to generate logs to FortiAnalyzer:
Capture logs:
Run on the FortiAnalyzer CLI:
diag sniffer packet any ' port 514 and host 192.168.91.55' 3
Run on the FortiDDoS CLI:
diag sniffer packet any ' port 514 ' 3
Create an NTP profile test and delete it on the FortiDDoS.
FortiAnalyzer will show the related logs from FortiDDoS:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.