Community
- Command Central
- MVP Program
- Monthly Mission
- Blogs
- Groups
- Events
- Media Vault
Products
- Observability
- Network Management
- Application Management
- IT Security
- IT Service Management
- System Management
- Database Management
Content Exchange
- SolarWinds Platform
- Server & Application Monitor
- Database Performance Analyzer
- Server Configuration Monitor
- Network Performance Monitor
- Network Configuration Manager
- SQL Sentry
- Web Help Desk
Free Tools & Trials

NTA deployment question

Hi All,

I have a network of Fortigate firewalls and HP Switches in 8 different sites.

I would like to have an idea, suggestion on the deployment strategy for NTA for getting the best and most complete information possible.

Our environment basically layed out so that switches are only configured as L2 devices with multiple VLANs. The Fortigates are doing the heavy lifting as L3 routing devices, as well as Firewall policies and UTM functions. I currently have the Firewalls sending SFLOW/NFLOW information to the NTA engine. Im wondering if this is the best scenario, or should this info come directly from the switches? Our CORe is HP 5500 and distribution is HP procurve.

Thanks

Find more posts tagged with

Accepted answers

All comments

byrona

If all of the same traffic that flows through your switches also flows through your Fortigates then you should be good. The catch is finding the least number of places in your network to capture all of the traffic. One thing I might warn though is having the Fortigates do too much, I don't know which specific models you are using but I do know that if you try to have some of their models do too much it overwhelms them.