Today I want to discuss how you can use Netflow and IPFIX for network security and even threat detection. There are quite a few different ways we can achieve this either through custom made alerts for suspicious traffic patterns or through our default algorithm based network threat detection routines.
With network security becoming more and more of a concern everyday, now is a great time to start using your NetFlow monitoring solution to proactively detect and neutralize attacks. Working in support we often get calls from customers that want to know who did what and when they did it. The great thing about NetFlow, as opposed to packet sampling technologies (i.e. sFlow), is that we can “play back” 100% of the data that was sent to us and figure out exactly what happened on a very granular, and forensic, level.
For a free 30 day trial of Scrutinizer, Download Now!
Sign up for Advanced NetFlow Training™ coming to a city near you!