What is NetFlow Telemetry for Network Traffic Monitoring?  It’s a type of automated measurement that provides visibility into your network that is provided by NetFlow, sFlow, or IPFIX.

NetFlow Telemetry can incorporate not only great reporting, but also intrusion and network threat detection.  The key differentiator is ‘automation’.  Our network threat detection is automated: Read more »

Visit our website to download a 30 day trial of Scrutinizer.

Join the NetFlow Developments group on LinkedIn.

We have beefed up our Cisco ASA NSEL Reporting using of course NetFlow. NSEL = NetFlow Secure Event logging and ASA = Adaptive Security Appliances. What is interesting about Cisco ASA NSEL NetFlow is that according to the documentation we have, the NetFlow exports kick out several different templates.  The most popular of which seem to be these:

• Extended: if the flow is torn down before the configured delay, the flow-create event is not sent; an extended flow teardown event is sent instead.
• Denied: flow was explicitly denied from being created in the first place. A Denied no XLATE event shows that the event was denied and no translation of the source and destination IP addresses and ports is done. This is typical when using NAT addresses.
• Flow Created: event is exported as soon as the flow is created

• Teardown: events indicate that an existing flow in the flow database of the appliance has ended. It could be due to “natural” causes (TCP: fin/fin-ack/ack, UDP: firewall times it out), or it could be a flow that has a problem detected midstream and the firewall shuts it off. The Teardown event will give you the total byte count (both inbound and outbound) for the entire flow in the octetTotalCounts field.

Read more »

For a 30 day Trial of Scrutinizer, Click Here to Download!

Join the NetFlow Developments group on LinkedIn.

Cisco Performance Routing isn’t your grandfather’s routing. Cisco Performance routing (PfR for short) considers a particular path’s traffic characteristics when determining the best path for the conversation. Imagine being able to use actual delay, packet loss, MOS, jitter and more to give your router a better idea of the traffic conditions. With that data it can make a smart decision on how to route the conversation traffic. Add to that the ability to report on this with something simple like Netflow and you have solution that sounds to good to be true. Well, it isn’t!

Read more »

For a 30 day Trial of Scrutinizer, Click Here to Download!

Join the NetFlow Developments group on LinkedIn.

It’s no secret the BYOD (Bring Your Own Device) revolution is in full swing, and you need to know how to monitor iPAD HD traffic on your corporate network. Long gone are the days where network administrators can police employees based solely on their desktop computer traffic. Cubicles are filled with 4 generations of iPhones, a variety of new e-readers, and now the new iPad HD / iPad 3.  BYOD network traffic analysis is of paramount importance.

Read more »

Visit our website to download a 30 day trial of Scrutinizer

Join the NetFlow Developments group on LinkedIn.

I have taken many calls regarding NetFlow traffic monitoring as it relates to the Cisco Catalyst 6500 switch.

This device even became the subject of a Mix Master Mitch video.

We have been talking a great deal lately about the introduction of Flexible NetFlow, and how it has allowed for the flow technology to move toward more advanced NetFlow analysis and reporting.

Good News!

Read more »

Visit our website to download a 30 day trial of Scrutinizer

Join the NetFlow Developments group on LinkedIn.

Cisco ASR NetFlow support for NAT can be found in the latest release of our NetFlow Analyzer but, only via Flow View because the export lacks bytes. Monitoring NAT with NetFlow is available in four different reports in the Palo Alto NetFlow exports.  One of which is shown below.

Read more »

For a 30 day Trial of Scrutinizer, Click Here to Download!

Join the NetFlow Developments group on LinkedIn.

What do network performance analysis and snowmobiling have in common?

Nothing, unless you are attending FlowFest™ 2012.

You know about NetFlow. But do you need to know more? Do you need to get a NetFlow solution in place? Could you better serve your company with advanced knowledge of NetFlow from the industry leader in NetFlow collecting and reporting?

FlowFest™ 2012 – Advanced NetFlow Training course, is a 2-day conference to learn what is possible with the NetFlow technology.

Read more »

Visit our website to download a 30 day trial of Scrutinizer

Join the NetFlow Developments group on LinkedIn.

Do you need an Enterasys NetFlow Collector?

Well, if you have Enterasys S-Series switches exporting Hi-Fidelity NetFlow, adding advanced NetFlow analysis to your network management toolset increases the value of that investment.

Read more »

Visit our website to download a 30 day trial of Scrutinizer.

Join the NetFlow Developments group on LinkedIn.

Today I’m going to discuss how to run some of the common reports in our NetFlow and IPFIX analyzer. Our NetFlow and IPFIX analyzer has the ability to report on all versions of NetFlow, sFlow, IPFIX and everything in between. If you’re new to the product, you might want to check out Cisco’s Introduction to NetFlow our NetFlow configuration guides to help you get started.

Read more »

Visit our website to download a 30 day trial of Scrutinizer

Join the NetFlow Developments group on LinkedIn.

In the 90s, network management was mostly about whats up or down and bandwidth shortages and slowness were often addressed by bringing in bigger connections with more bandwidth or upgrading servers and end systems. Overtime, we have realized that by gaining a bit of insight into the traffic patterns, we can sometimes avoid costly upgrades.

Read more »

Visit our website to download a 30 day trial of Scrutinizer

Join the NetFlow Developments group on LinkedIn.