netflow traffic analysis

elgin

Why is Metadata Important for IT Compliance?

Enterprises are seeking proactive approaches against potential breaches in their network and prefer passive approaches to detect vulnerabilities. But as technology evolves and become more complex, enterprises face challenges adhering to IT compliance standards. With limited visibility, SecOps can’t perform threat forensics and help their organization maintain compliance.

Use NetFlow to identify network anomalies

NetFlow is widely regarded as an ideal technology for acquiring summarized details on network traffic; as a result one can use NetFlow to identify network anomalies.  Use of the data collected includes making bandwidth optimizations, understanding the impact of configuration changes, identifying trouble areas, usage base billing and uncovering anomalies that often fly under-the-radar. Today …

Use NetFlow to identify network anomalies Read More »

Network Address Translation Reporting: Cisco ASA NetFlow

Network Address Translation reporting is now available from NetFlow exported from the Cisco ASA. The traditional NetFlow reporting that can be done from the Cisco ASA is great. But have you noticed that when your firewall NATs an address, it becomes the source or destination within your flows, and thus makes NetFlow a lot less …

Network Address Translation Reporting: Cisco ASA NetFlow Read More »

Define Cisco NBAR Applications: NetFlow Reporting

Do you know how to define your own Cisco NBAR applications? In today’s networks, application recognition is no longer one of those ‘nice to have’ options when it comes to traffic monitoring, it is a necessity. Many vendors are now exporting application definitions in their flow exports. Using NBAR,  applications like H.323, Telnet, RTP, Exchange …

Define Cisco NBAR Applications: NetFlow Reporting Read More »

How to Monitor IP SLA with Flexible NetFlow

The other day we solved a unique customer problem when we figured out that we could monitor IP SLA with Flexible NetFlow instead of SNMP. What was the problem? The customer wanted to monitor latency using Cisco Medianet Performance Monitoring but, because the round trip time (RTT) is only calculated during the initial TCP hand …

How to Monitor IP SLA with Flexible NetFlow Read More »