• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer
  • Internet Threat Center
  • Blog
  • Contact
  • Weekly Demo
  • Search

Plixer

Network and Security Intelligence Platform

Menu
  • Solutions
    • Overview
      • Incident Response System
      • Behavior Monitoring
      • BYOD Monitoring
      • Voice and Video Monitoring
      • Compliance Assurance
      • Virtualization Visibility
      • Cloud Service Monitoring
    • Industries
      • Education
      • Financial Services
      • Retail
      • Healthcare
      • Service Provider
      • Government
    • Your Role
      • CEO or IT Executive
      • Network Admin
      • Security Analyst
      • Application Engineer
      • VMware and Server Admin
    • Why Plixer
  • Products
    • Scrutinizer
      • Scrutinizer Overview
      • Network Analysis
      • Security Analytics
      • Multi-Tenancy
      • Advanced Reporting
      • Distributed Data Collection
      • Install Options
      • Request a Quote
      • Download Options
      • Trade-In Program
      • Competitor Worksheet
    • Flow Replicator
      • Replicator Overview
      • Flow Replicator Evaluation
    • FlowPro
      • FlowPro Overview
      • FlowPro Evaluation
      • Request a Quote
    • Free Downloads
      • Scrutinizer
      • Flowalyzer
      • IPFIXify
  • Support
    • NetFlow, IPFIX, & sFlow Configuration Guide
    • Available Scrutinizer Updates
    • End of Life Policy
    • Scrutinizer Manual
    • FlowPro Manual
    • Replicator Manual
    • FAQ
    • Services
    • Training Videos
  • Resources
    • White Papers
    • Case Studies
    • Webinars
    • Brochures
    • Solutions Briefs
    • Forensic Investigation Kit
    • Free Book Compliments of Plixer!
  • Partners
      • Partners
        • Find a Partner
        • Become A Partner
        • Partner Login
      • Technology Alliance Partners
        • Additional Integration
        • Cisco Systems
        • Citrix Systems
        • Endace
        • Gigamon
        • Ixia
        • Paessler – PRTG
        • Palo Alto Networks
        • VMware
        • Splunk
  • About
      • Company Overview
      • Awards
      • Our Culture
      • Careers
      • Our Customers
      • Community Outreach
      • Events
      • Press Releases
      • In The News
Home > Blog > Bluecoat

Bluecoat NetFlow Support Recap

10.30.14 by Justin

blue coat logoOver the last five years or so, I have noticed that one of the major topics we get requests for is Bluecoat NetFlow support. While it may surprise many, we have supported Bluecoat exports for quite some time; in fact, if you look back, and that’s what I intend to do, you will see that we’ve supported Bluecoat for years. We have a good deal of information, see below, and my goal is to help you find what you are looking for in this Bluecoat NetFlow support recap.

Can I configure NetFlow/IPFIX with my Blue Coat device?

Bluecoat provides a number of security and networking solutions. Many of which support NetFlow or IPFIX. Let me go over a few of these devices, but first, let me define one thing. IPFIX is the official standard for all flow technologies and the IPFIX standard includes provisions for real-time packet sampling as well. With this standard, comes additional opportunities for vendors to support a wide variety of devices.

[Now back to my point].

One such opportunity is Bluecoat MACH5. The MACH5 is a WAN optimization solution and combines protocol acceleration, compression, object and byte caching and QoS to help accelerate key applications. In a previous article Steve goes through the process of configuring the MACH5 to export flow data. Having the ability to collect flow data through your WAN optimizer is great because it allows you to see how the traffic changed on one device, rather than looking at two or more devices to see how the flows changed from one interface to another. Further, a major benefit of the MACH5 is that you define flow exports for both ingress and egress, which will let you know when and how flows are changing.

Another opportunity to gain the benefits of flow data is with the Bluecoat Packet Shaper. While most people know you can export data with Packeteer, many people are not aware that you can export NetFlow v5, too. What’s this mean to you? Well, it means you no longer have to use Blue Coats’ IntelligenceCenter for your Packeteer exporting. You can now use a third party collector to collect your data and provide additional benefits. You can also tie syslog details to your NetFlow exports, providing you URL information. This lets you drill in even further than you otherwise would be able to.

Finally, XOS can generate NetFlow data on the X-Series Platform and forward flows to one or more external NetFlow collectors for analysis. This enables Crossbeam NetFlow support. Brian wrote a great article last year that discusses how to configure XOS to export flow data.

If you have any questions on how you can set up your Blue Coat devices to export flow data, reach out to our fantastic support team. They can give you excellent direction on setting up your devices.

Sources:

Bluecoat Crossbeam NetFlow Support

Blue Coat MACH5 NetFlow Support

Blue Coat NetFlow Support : Packet Shaper FDR Exports

Categories: Bluecoat Tags: BlueCoat, Bluecoat MACH5 NetFlow, Bluecoat netflow support

About Justin

Justin's avatar

Justin Jett is Director of Audit and Compliance at Plixer with roles ranging from system administration of web services to technical product marketing for Plixer’s incident response system, Scrutinizer. Jett, a graduate of the University of Maine at Farmington, is an avid learner of all things security, with a particular interest in TLS and DNS attacks.

Reader Interactions

sidebar

Blog Sidebar

Subscribe to our blogs

Recent Posts

  • How to Configure Meraki for SNMP Polling
  • Why ERSPAN is Important for Network Security
  • The dangers of IoT devices and what you should know
  • Real-Time DDoS Detection & Analysis
  • Cisco ASA Access List Reporting

Search Top Blog Categories

Configuration
Cyber Attack
Cybersecurity
Incident Response
IoT
NetFlow Monitoring
Network Monitoring
Network Security
Network Traffic Analysis
Network Traffic Monitoring

All Blog Categories

Footer

Social Media

FacebookTwitterYoutubeLinkedin

68 Main St Ste 4
Kennebunk, ME 04043
+1 (207) 324-8805
+1 (207) 324-8683

Solutions

  • Incident Response System
  • Behavior Monitoring
  • BYOD Monitoring
  • Voice and Video Monitoring
  • Compliance Assurance
  • Virtualization Visibility
  • Cloud Service Monitoring

Products

  • Scrutinizer
    • Network Analysis
    • Security Analytics
    • Multi-Tenancy
    • Advanced Reporting
    • Distributed Data Collection
    • Install Options
    • Request a Quote
    • Download Options
    • Trade-In Program
    • Competitor Worksheet
  • FlowPro
  • Replicator

Support

  • NetFlow, IPFIX & sFlow Configuration Guide
  • Available Scrutinizer Updates
  • End of Life Policy
  • Scrutinizer Manual
  • FlowPro Manual
  • Replicator Manual
  • FAQ
  • Services

Resources

  • White Papers
  • Case Studies
  • Webinars
  • Forensic Investigation Kit
  • Free Book Compliments of Plixer!

Partners

  • Find a Partner
  • Become A Partner
  • Partner Login
  • Technology Alliance Partners
  • Cisco Systems
  • Citrix Systems
  • Endace
  • Gigamon
  • Ixia
  • Paessler – PRTG
  • Palo Alto Networks
  • VMware
  • Splunk

About

  • Company Overview
  • Awards
  • Our Culture
  • Careers
  • Our Customers
  • Community Outreach
  • Press Releases
  • In The News

© 2019 Copyright Plixer, LLC. All Rights Reserved. Terms and Conditions | Privacy Policy