Juniper MX NetFlow Configuration
Juniper MX5 NetFlow Configuration Recently while looking at my router’s NetFlow reporting, I came across an issue regarding the Juniper MX5 router’s NetFlow configuration....
All
General
DNS Command and Control Detection
This morning our malware incident response system triggered an event for suspected DNS “Command and Control” activities. Our security team jumped on it and...
Detecting DDoS With Netflow
In the past few months I’ve noticed that the number of support calls we’re taking for help using our NetFlow Analyzer for detecting DDOS...
Ziften ZFlow Reporting Support
After analyzing their impressive export, Ziften ZFlow reporting support or Ziften IPFIX support is now supported by our flow collection system. Per their announcement...
Exchange Monitoring Tool
My colleague Jake recently wrote about Disaster Recovery Monitoring, and about how our Incident Response System, using IPFIX/NetFlow is more helpful then tools that...
Overview of DNS Protocol : Part 3 of 3
Make sure you read Part 1 of Overview of DNS Protocol before reading this one or you can go back to part 2. At...
NetFlow Security Monitoring
NetFlow Security Monitoring When you hear NetFlow/IPFIX, what is your first thought? For most people, their first thought will be “NetFlow’s great for performance...
Overview of DNS Protocol : Part 2 of 3
This is part 2 of our 3 part series which provides an overview of the DNS protocol. Below are a few other terms you may have...
Overview of DNS Protocol : Part 1 of 3
If you have ever wondered how the DNS works, this post was put together by three of us plixer dudes who wanted a DNS...
Baselining Network Traffic
What is baselining network traffic? Why worry about baselining network traffic and Is this used for network security? These are the questions I want...