To conclude our 7 part NetFlow v9 overview blog series, I will highlight our Advanced NetFlow Traffic Analyzer, showing off the innovative features we bring to Network Traffic Management and Traffic Analysis in these areas:

• Dashboard views
• Flow Reporting
• Network Security

Read more »

Joanne Ghidoni
Sr. Solutions Engineer

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

We are excited to announce Scrutinizer v10 – our network traffic monitor with several new features.  A few of which are listed below.

• New Mapping: Multiple connections from the same device, animated links (network ants), dependencies and a newer look and feel. Someone else will blog on these new maps as there is a lot to talk about with this new feature.

Read more »

Matt

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Yes, you heard it right! Cisco has added support for the sFlow standard in the latest NX-OS 5.0(3)U4(1) release for Nexus 3000 Series switches.

The Nexus 3000 series are the first Cisco switches to include hardware support for sFlow, offering scalable wire-speed monitoring of all traffic flowing throughout entire networks of Nexus 3000 series switches.

Since the Nexus 3000 series switches are the first Cisco products with sFlow, many Cisco network administrators experienced with using Cisco’s NetFlow technology for monitoring TCP/IP traffic may likely be unfamiliar with sFlow technology.

Based on the name, you might think that sFlow is just another version of Cisco NetFlow.

Read more »

Scott Robertson
Sr. Solutions Engineer

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Catalyst 6509 NetFlow support is essential, especially when the switch is set up as a core network device; this blog should help you get started with NetFlow traffic monitoring on 6500 series switches.

Enabling NetFlow on a 6509 is slightly different from the traditional IOS NetFlow setup. Here you need to keep in mind that NetFlow on the MSFC is collected in software, and on the PFC it is collected in hardware.  Beside the familiar IOS NetFlow commands,  Cisco 6509 NetFlow also requires enabling NDE in order to export flow statistics to the collector. Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

I got this google alert the other day and it caught my attention because it talked about configuring IPFIX and the link went to a pdf on Juniper XGS 5000 IPFIX Support.  Apparently the Juniper Networks Security Network Protection XGS 5000, a next generation IPS now supports IPFIX but really, it’s NetFlow.  I got sort of excited because I love finding out about new gear that supports NetFlow or IPFIX.  I clicked on the link and in the first paragraph I read:

Read more »

Ellen

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

IT Security : NetFlow, the proposed standard for network traffic analysis (when SNMP & Port Utilization just won’t cut it), has made leaps and bounds in Internet Security during the past few years. In part one of a two part series, I’d like to demonstrate Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

How to configure Vyatta NetFlow?  That is the question we will be answering in this blog. I thought you might need a short and concise Vyatta NetFlow configuration guide that goes straight to the point.

Configuring NetFlow on a Vyatta is fairly simple: Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

What is NetFlow Telemetry for Network Traffic Monitoring?  It’s a type of automated measurement that provides visibility into your network that is provided by NetFlow, sFlow, or IPFIX.

NetFlow Telemetry can incorporate not only great reporting, but also intrusion and network threat detection.  The key differentiator is ‘automation’.  Our network threat detection is automated: Read more »

Joanne Ghidoni
Sr. Solutions Engineer

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

We have beefed up our Cisco ASA NSEL Reporting using of course NetFlow. NSEL = NetFlow Secure Event logging and ASA = Adaptive Security Appliances. What is interesting about Cisco ASA NSEL NetFlow is that according to the documentation we have, the NetFlow exports kick out several different templates.  The most popular of which seem to be these:

• Extended: if the flow is torn down before the configured delay, the flow-create event is not sent; an extended flow teardown event is sent instead.
• Denied: flow was explicitly denied from being created in the first place. A Denied no XLATE event shows that the event was denied and no translation of the source and destination IP addresses and ports is done. This is typical when using NAT addresses.
• Flow Created: event is exported as soon as the flow is created

• Teardown: events indicate that an existing flow in the flow database of the appliance has ended. It could be due to “natural” causes (TCP: fin/fin-ack/ack, UDP: firewall times it out), or it could be a flow that has a problem detected midstream and the firewall shuts it off. The Teardown event will give you the total byte count (both inbound and outbound) for the entire flow in the octetTotalCounts field.

Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Cisco Performance Routing isn’t your grandfather’s routing. Cisco Performance routing (PfR for short) considers a particular path’s traffic characteristics when determining the best path for the conversation. Imagine being able to use actual delay, packet loss, MOS, jitter and more to give your router a better idea of the traffic conditions. With that data it can make a smart decision on how to route the conversation traffic. Add to that the ability to report on this with something simple like Netflow and you have solution that sounds to good to be true. Well, it isn’t!

Read more »

Jimmy D the Netflow Detective

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Join the NetFlow Developments group on LinkedIn.