Network Security: Detecting Malicious Traffic with NetFlow

Posted in General, Network Monitoring, network security, network threat detection on August 27th, 2014 by Jake
Network Security: Detecting Malicious Traffic with NetFlow

Today, I want to discuss how you can use NetFlow for detecting malicious traffic on your network. With all of the recent malware outbreaks the network security tools and solutions put in place are becoming more and more critical. Alongside client Anti-Virus, corporate firewalls, and content filtering, malware can sometimes slip through all of that and still make it onto the network. When it does, how do you tell where it’s at? Who is it talking to? And perhaps more importantly, what kind of information is it sending off your network? Using NetFlow we have an index of every conversation and transaction that has taken place on your network. We can use this data to pinpoint the user who is infected and lower the response time to eradicate the malware. Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,

Procera IPFIX Support

Posted in Network traffic monitoring on August 20th, 2014 by Scottr
Procera IPFIX Support

Procera Packetlogic: IPFIX ReportingI have recently had a number of customers ask me about Procera’s IPFIX support, and how to get flow monitoring configured so that they can get visibility into the traffic traversing their Procera Packetlogic systems.

Procera’s PacketLogic identification engine uses Deep Flow Inspection (DFI) to learn and identify a number of different network traffic properties. A network administrator who uses NetFlow/IPFIX to monitor the network benefits greatly from this inspection process because the network conversations seen by the Packetlogic, and the applications contained within that traffic, are managed as flows. So any PacketLogic system capable of storing flow statistics can also be configured to export those same flows as IPFIX records to a collector. Read more »

Scott Robertson
Sr. Solutions Engineer

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!



Tags: , ,

PCI DSS Compliance

Posted in NetFlow Security on August 18th, 2014 by Justin
PCI DSS Compliance

Due to potentially steep fines and loss of customer good will, retail and financial services companies are guardedly concerned about PCI (Payment Card Industry) compliance. The PCI Data Security Standard (PCI DSS) is a set of prescriptive data security specifications laid out to ensure the safe handling of cardholder information at every stage. The PCI DSS provides an actionable framework for developing a robust payment card data security process — including prevention, detection, and appropriate reaction to security breach incidents. In a previous blog we briefly explain how NetFlow helps you maintain PCI compliance. This blog will educate you on how Scrutinizer accomplishes PCI DSS Compliance specific to individual requirements. Read more »

Justin
Marketing Manager

Tags: ,

4 Key Focuses of Cyber Attack Incident Response

Posted in incident response on August 15th, 2014 by mike@plixer.com
4 Key Focuses of Cyber Attack Incident Response

You know that your company is carrying infections that your threat detection systems haven’t unearthed. Malware is sitting on a host in some corner of the network waiting for the time when it has to check in again with the Command and Control (C&C) server out on the internet. If instructions are given, it will make a move and if you are able to spot the incident, what will you do as part of your cyber attack incident response? Here are 4 of our focuses when following up on a cyber-threat incident.

Read more »

Michael Patterson
Founder and CEO

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: ,

Cisco 6500 Flexible NetFlow Record Configuration

Posted in Flexible NetFlow, netflow configuration on August 13th, 2014 by Joanne
Cisco 6500 Flexible NetFlow Record Configuration

Last week, on a call with a customer, I had the pleasure of learning more about the Cisco 6500 Flexible NetFlow record configuration.    And today I will share that information with you.

Read more »


Joanne Ghidoni
Sr. Solutions Engineer

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Tags: , ,