You should only need to open port udp 2055 incoming on the outside interface on the fw. ( if that is the port your flow service is listening for )
access-list outside extended permit udp "IPOF2921Router" "NETMASK" "IP of ORIONFLOWCOLLECTOR" "netmask" eq 2055
access-list outside extended permit udp 172.16.0.2 255.255.255.255 172.16.2.2 255.255.255.255 eq 2055.
You can have the FW guys check logs to see if they see the traffic even hit the FW outside interface. If so and it's allowed, check routing to make sure its being routed correctly.
i have fw checkpoint R.77.20 that's access list command for the ASA or Check point?
Can you make example too how to create open port in Checkpoint fw.
I don't have a checkpoint example. That was for a cisco asa.
I am not very familiar with checkpoint products sorry
Any expert's to help me to solve my problem please?
161 - Used for CBQoS enabled devices for traffic-shaping policies and results using SNMP
1433 – Communication between the NTA Flow Storage and NPM SQL Server
5671 – Rabbit MQ messaging
17777 – Send and receive traffic between NPM and any other Orion modules
17778 – Access the SolarWinds Information Service API and agent communication
17791 – Agent communication on any SolarWinds server running Windows Server 2008 R2 SP1
Device specific port – port used for NetFlow traffic that is specified on your device.
NTA Flow Storage Database Server
2055 – Receiving flows on the collector
Confirm collection port 2055 has not been changed in NTA settings.