Citrix NetScalers provide a feature called AppFlow. AppFlow allows Netscaler devices to export flow data to collection tools, often to be used for network/security analysis. Citrix offers a UI for AppFlow configuration, but if you are not familiar with it, the … [Read more...] about How to Enable AppFlow from CLI
About Traci Anderberg
Deploying Scrutinizer in Azure
I’ve heard Azure used quite a bit lately as a place to host and manage virtual machines. Azure launched console access in March of 2018. Since then, deploying VMs that require initial setup has become much easier. Now, even though Azure is not a Scrutinizer … [Read more...] about Deploying Scrutinizer in Azure
Gigamon IPFIX Configuration from Command Line
Gigamon uses GigaSMART for most of its NetFlow configurations, but some of us just love working from within a CLI. With a bit of direction from a Gigamon representative, we were able to document the process of configuring IPFIX for Gigamon devices from—you … [Read more...] about Gigamon IPFIX Configuration from Command Line
Gigamon NetFlow Configuration From Command Line
Gigamon has a web interface called GigaSMART that it uses to configure NetFlow on Gigamon devices. But GigaSMART can be limiting; through working with many Gigamon and Scrutinizer users, I’ve found that most users are far more comfortable configuring NetFlow … [Read more...] about Gigamon NetFlow Configuration From Command Line
Extreme Networks: Enabling and Disabling SNMPv1, SNMPv2, and SNMPv3
Why am I seeing SNMPv1 and SNMPv2 attempts when I’ve only got SNMPv3 enabled? It appears some of Extreme’s switches handle their SNMP configurations a bit differently. Here, I’ll answer the above question as well as discuss how to configure, enable, and … [Read more...] about Extreme Networks: Enabling and Disabling SNMPv1, SNMPv2, and SNMPv3
Scrutinizer Installation Guide
I’ve recently had a couple of people reach out to me about the deployment process of our Scrutinizer Virtual Appliance (VA). I wanted to create a quick reference guide for those who are new to Scrutinizer. This guide will review both what is required for the … [Read more...] about Scrutinizer Installation Guide
Extreme NetFlow Configuration for S-Series, N-Series, and K-Series
We’ve seen a lot of coverage regarding the growth of Extreme Networks lately. Between their recent acquisition of Brocade and Avaya, it would appear that they are serious about expanding their product lineup to increase performance and network visibility; by … [Read more...] about Extreme NetFlow Configuration for S-Series, N-Series, and K-Series
IoT Security: The Nightmare After Christmas
What's this? What's this? There's IoT devices everywhere! … [Read more...] about IoT Security: The Nightmare After Christmas
How I Used Behavioral Analytics to Track Locky
In the past month I have been on a couple support calls where Locky ransomware came up. Locky sounded familiar but wasn’t a topic I had yet tackled with any customers. So I took to Google and what I found was surprising. Pages of recent articles surrounded … [Read more...] about How I Used Behavioral Analytics to Track Locky
Why and How to Use a Syslog Forwarder
Often I find that there is overlap in the type of insight sought after in syslogs and NetFlow tools that the security and network teams want to see. It causes confusion, and even the need to review each other’s tools, searching for the data they are missing … [Read more...] about Why and How to Use a Syslog Forwarder
Social Media