Khalil is a Technical Support Engineer at Plixer. He is dedicated to becoming an expert in networking and spends his free time by discovering a new things in the field. Besides his professional passion, Khalil has fun fishing and playing video games. He prefers an active lifestyle and enjoys spending time with family.
I recently helped a customer configure NetFlow on their ISR4300. I found that ISR43XX/44XX routers run IOS-XE, which only supports Flexible NetFlow (FNF). NetFlow is a Cisco technology that provides statistics on packets flowing through the router. It’s the standard for acquiring IP operational data from IP networks.
Today I would like to explain how to create a custom script that sends specific information to PRTG as a sensor. Customers often ask me how to use PRTG to tack the uptime and downtime of Scrutinizer. So, what specific parameter needs to be set up so that the PRTG sensor would react immediately on it?
I was recently on a call with a customer who wanted to know which applications use the most bandwidth during working hours—i.e. their top talkers. This gave me a great opportunity to review a specific feature of Flexible NetFlow and AVC integration. I’ve decided to build a small lab with a simple network configuration where I could set up a couple of VLANs, a trunk communication between L2 and L3 devices, and couple of devices. The end goal is to define what host under what VLAN is using what application the most.
Today we are going to talk about Plixer’s new Flow Analytics algorithm, Reverse SSH Shell, which has been included in the latest Plixer Scrutinizer update. The Reverse SSH Shell algorithm identifies possible reverse SSH tunnels to external destinations.