Data is not Ri8
-
abhi321jay
- Posts: 69
- Joined: Mon May 01, 2017 1:23 am
Data is not Ri8
In this page you can see total data transmitted from destination IP 600+ GB which is not true. can you please explain
You do not have the required permissions to view the files attached to this post.
Re: Data is not Ri8
Can you run that query on the NNA server and then click on the Bytes header to sort the query by Bytes with the largest Bytes on top?
Screen capture that and post it here.
Your query is 42 pages long and there could be larger transfers of data that is not displaying.
Also, there is a known bug in the NNA GUI. The Bytes/Sec label is actually supposed to be Bits/Sec.
Screen capture that and post it here.
Your query is 42 pages long and there could be larger transfers of data that is not displaying.
Also, there is a known bug in the NNA GUI. The Bytes/Sec label is actually supposed to be Bits/Sec.
Be sure to check out our Knowledgebase for helpful articles and solutions!
-
abhi321jay
- Posts: 69
- Joined: Mon May 01, 2017 1:23 am
Re: Data is not Ri8
Is there anyway to sort this out bczz the data is given by NNA is very high which is not possible.
Re: Data is not Ri8
Can you login to the NNA server as root, run the following command and post the /tmp/dump.csv file?
Make sure the path is correct in the above command.
I have heard of some compatibility issues with Fortinet firewalls so make sure the system is up to date with the latest firmware.
What is the Make and Model number of the device and can you post the configuration settings so I can view them?
Code: Select all
nfdump -R /usr/local/nagiosna/var/FortinetFirewall/flows -A dstip,srcip 'dst ip 10.80.0.248' -O bytes -o csv >/tmp/dump.csvI have heard of some compatibility issues with Fortinet firewalls so make sure the system is up to date with the latest firmware.
What is the Make and Model number of the device and can you post the configuration settings so I can view them?
Be sure to check out our Knowledgebase for helpful articles and solutions!
-
abhi321jay
- Posts: 69
- Joined: Mon May 01, 2017 1:23 am
Re: Data is not Ri8
Hii,
please find the required file and provide solution as we are not able to get exact data
please find the required file and provide solution as we are not able to get exact data
You do not have the required permissions to view the files attached to this post.
Re: Data is not Ri8
In the bottom of the dump file, it has the summary of the traffic flow for that FortinetFirewall, does it look correct?
Code: Select all
flows bytes packets avg_bps avg_pps avg_bpp
13763 364203262514 165769653 34722243 1975 2197
Be sure to check out our Knowledgebase for helpful articles and solutions!
Re: Data is not Ri8
Another thing I found in the dump file is that the system is receiving the same value for the inbound bytes as the outbound bytes which is causing the numbers to be twice as large.
Verify that the Fortinet system is configured correctly and is not sending the incorrect information for the inbound vs the outbound data.
Verify that the Fortinet system is configured correctly and is not sending the incorrect information for the inbound vs the outbound data.
Be sure to check out our Knowledgebase for helpful articles and solutions!
-
abhi321jay
- Posts: 69
- Joined: Mon May 01, 2017 1:23 am
Re: Data is not Ri8
Can you share timline for that BUG (Bytes and bits confusion in GUI) FIXING
Re: Data is not Ri8
All I can say is that the next version is coming soon.
Be sure to check out our Knowledgebase for helpful articles and solutions!