Three Mistakes When Performing Cyber Threat Detection

Posted in cyber threat detection on June 18th, 2013 by mike@plixer.com
Three Mistakes When Performing Cyber Threat Detection

We are very busy this week getting ready for CiscoLive! 2013 in Orlando next week.  Since we have a first rate team getting us ready for the show, I had a block of time to put together three primary thoughts I’ve collected regarding mistakes some people make in their cyber threat detection routines.
Read more »

Michael Patterson
Founder and CEO

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: ,

Best NetFlow Analyzer

Posted in NetFlow Analyzer on June 16th, 2013 by Ryan
Best NetFlow Analyzer

The Best NetFlow Analyzer available in the industry really depends on the needs of your IT team to support your company’s critical business applications. What attributes specific to your software that requires specific monitoring? Although the requirements are often the same across applications, generally there are a few specific metrics that if monitored correctly, can bring benefits to the support team.

Read more »

Ryan

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Plixer at CiscoLive! Universal Studios in Orlando

Posted in Cisco AVC, NetFlow on June 13th, 2013 by Laura
Plixer at CiscoLive! Universal Studios in Orlando

It’s that time again, CiscoLive! 2013 is upon us! Plixer’s NetFlow Knights will be attending the annual event next week in Orlando. We are all brimming with excitement to show off new features of the recently released, Scrutinizer v11. Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Cisco ASA NetFlow: Bidirectional Support Added

Posted in Cisco Advanced Reporting, cisco ASA on June 12th, 2013 by Justin

If you were waiting to upgrade from ASA 8.4(5) because you would lose bidirectional flow exports, then wait no more. Cisco ASA NetFlow Bidirectional support has been added in version 9.1(2).

 Cisco ASA Read more »

Justin
For a free 30 day trial of Scrutinizer, Download Now!
Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Cisco 2960-X NetFlow-Lite Configuration

Posted in NetFlow-Lite on June 11th, 2013 by Matt S
Cisco 2960-X NetFlow-Lite Configuration

I have two goals with this post, the first is to announce that you can sign up for the joint webcast we are hosting with Cisco Systems regarding the release of the Catalyst 2960-X with NetFlow-Lite Support.
•    10AM – Sign Up
•    4PM – Sign Up

The second goal is to explain how to configure the 2960-X NetFlow-Lite Support.

The Cisco Catalyst 2960-X NetFlow-Lite configuration is pretty straight forward however it is very different from the IPFIX PSAMP “NetFlow-Lite” we configured on the Cisco 4948E NetFlow-Lite.  The 2960x uses flow sampling without any form of packet capture.  There are two types of possible NetFlow Lite sampling configurations on the 2960x:

  • Deterministic Sampling
  • Random Sampling

Read more »

Matt

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Cisco NetFlow | Part 2 – What is Flow Analytics™?

Posted in detect network threats, NetFlow Analysis, Network Health Report, network threat detection, Network Traffic Analysis on June 5th, 2013 by Jake

In this blog, I will be continuing Part 1 of the “What is Flow Analytics™?” Series. In this blog I will be going over what the different algorithms do and how you can use them to better your network traffic analysis.

Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

What is a Security Threat: DNS Reflection Attack

Posted in Security on June 5th, 2013 by Ellen
What is a Security Threat: DNS Reflection Attack

What is a security threat? A network security threat is any unwanted traffic trying to get onto your network or cause harm to it. Today I want to talk about a DNS reflection attack which is when attackers send a large number of queries from a spoofed source address to your DNS.  The address which is spoofed is typically that of the victim.  When the requests are received by the name server, all ensuing responses to these queries are directed back towards the spoofed IP of the victim.  Recently, one of our customers detected a DNS reflection attack with our network threat detection solution and shared the following story.

Read more »

Ellen

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Enabling NetFlow on a vSwitch

Posted in IPFIX, netflow configuration, Network Monitoring, Virtual NetFlow, VMware NetFlow on May 29th, 2013 by Jimmy W
Enabling NetFlow on a vSwitch

With the increasing popularity of vSwitches; some of you may be asking “how do I go about enabling NetFlow / IPFIX in a virtual environment?” Well today, I’m going to help answer that question for not one, but 3 of the most popular virtual switches: OpenVSwitch, VMware vSphere, and the Cisco Nexus 1000v. Read more »

Jimmy Wendler

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Username NetFlow Reporting

Posted in internet security, NetFlow Security, Netflow Traffic Analysis, network behavior analysis, network security, network threat detection, SonicWALL on May 25th, 2013 by James
Username NetFlow Reporting

Username NetFlow Reporting is a hot topic since the Cisco Visual Networking Index (VNI) report in late May. By 2016, Cisco’s forecast predicts that there will be “nearly three networked devices per capita”  Naturally, people are asking “Who is authenticating all of these devices onto the network?” Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Cisco AVC Support: Wireless Policy

Posted in Network Traffic Analysis, wireless netflow on May 22nd, 2013 by Scottr
Cisco AVC Support: Wireless Policy

Using Cisco Application Visibility and Control (AVC), network administrators can manage network application performance by setting up a wireless policy to prioritize, control, and bring visibility to the BYOD applications traversing their network.

There are many challenges IT managers face on a daily basis. As the number of user devices and the business, personal and collaborative applications continue to grow, these challenges only make the job of an IT manager harder.

Today’s networks support a mixed use of guests, employees and vendors. Without classifying and prioritizing applications on the network, employees risk losing productivity and response time to critical applications that they use.

Imagine what goes through the mind of an IT administrator who is responsible for getting a handle on device and application growth and usage on their network:

  • Is a guest downloading movies using Bit-Torrent – in other words, stealing valuable airtime away from my mission-critical applications?
  • What are my top users and applications?
  • Can I prioritize business-class applications and de-prioritize the applications such as Netflix?
  • Do I need more Access Points?

So how is Cisco AVC going to help on your wireless network access points?
Read more »

Scott Robertson
Sr. Solutions Engineer

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!



Tags: , ,