If you are ever out to dinner with friends talking about which network devices have the strangest exports, the Cisco ASA will certainly be near the top of the list. The ASA is truly unlike any other firewall in what it can export in its NetFlow Secure Event … [Read more...] about Cisco ASA Access List Reporting
About Brian Davenport
How to Filter Network Traffic
When it comes to filtering network traffic, a scenario that appears simple in nature can be hard to accomplish at scale. Understanding top talker information or bandwidth trends isn’t really a problem for most traffic analysis solutions—the challenges I … [Read more...] about How to Filter Network Traffic
QRadar NetFlow Integration
In the IT vendor space, there is often debate on which is better: one solution that handles everything, or best-of-breed solutions that each solve different problems. This pendulum constantly swings back and forth. The tradeoff is clear: if you pick one … [Read more...] about QRadar NetFlow Integration
Username Reporting – NetFlow Integration with ForeScout CounterACT
User attribution is one of the things I’m asked for most frequently by customers who are looking at network traffic analytics. The use case is quite simple. In a DHCP environment it can be really cumbersome to see who was actually logged in to a machine when … [Read more...] about Username Reporting – NetFlow Integration with ForeScout CounterACT
How to Integrate Grafana with NetFlow (Part 2)
Since working on the initial integration of getting NetFlow to Grafana, I have been lucky enough to work with customers to test things out. During this process, there were a couple of features customers asked for:The ability to specify which exporter to … [Read more...] about How to Integrate Grafana with NetFlow (Part 2)
How to Integrate Grafana with NetFlow
This week I have had a few customers ask how to integrate Grafana with NetFlow to improve their network operations center. For those of you who don’t know, Grafana is an open source platform that can be used to visualize a wide variety of data types. With … [Read more...] about How to Integrate Grafana with NetFlow
SolarWinds NetFlow Traffic Analyzer Integration
This blog will provide a detailed guide on how to integrate SolarWinds Orion with Plixer’s Scrutinizer. Before we get to the how of integration, we need to understand why we would want to do this in the first place. After all, SolarWinds already collects flow … [Read more...] about SolarWinds NetFlow Traffic Analyzer Integration
A Comprehensive List of Cisco NetFlow Capable Devices
Is my Cisco hardware NetFlow compatible?If you follow the news, you know that there has been a big spending spree by Cisco with multiple acquisitions of technology companies. As Cisco adds these new products to its portfolio and refreshes its old products, … [Read more...] about A Comprehensive List of Cisco NetFlow Capable Devices
How to Use Flow Data as an Alternative to SSL Decryption
NetFlow has traditionally been limited to exporting fields contained within a packet header. With the influx of Content Delivery Networks (CDNs) like Akamai, Level3, Amazon, etc., it is hard to know where users are actually going. The obscurity caused by CDNs … [Read more...] about How to Use Flow Data as an Alternative to SSL Decryption
Use Flow Data to Track Down DMCA Violations
The Digital Millennium Copyright Act (DMCA) was passed on October 12, 1998 as a means to mitigate the effect torrent use was having on the music and film industries. In my opinion, the most famous use of this act was in the year 2000 when A&M Recordings, … [Read more...] about Use Flow Data to Track Down DMCA Violations
Social Media