NetFlow Security Analytics Detecting threats and intrusions on your network is an ongoing, evolving process/battle. Keeping up with NetFlow Security Analytics is something we strive for with each rendition of Scrutinizer. Our algorithms were engineered to effectively identify security breaches, suspicious behavior and provide timely incident response. Read below for some of our latest additions.
In a previous Procera IPFIX blog I talked about the security benefits gained from collecting their IPFIX flow exports, and how using IPFIX flow exports network traffic can be easily disseminated and presented on various levels of reporting detail. Today I am going to talk about some additional IPFIX configuration steps that will show you …
If you’re an avid follower of our blogs, then you know that network threat detection using NetFlow analytics is a valuable enhancement to network monitoring. So then, integrating NetFlow and SIEM solutions takes network security to the next level, combining the ultimate threat detection solution with your existing Security information and event management solution.
Do you have a solution in place for detecting network threats? If you say no, you are not alone. Or maybe you have firewalls blocking the unwanted network traffic. Either way, you may be interested in network behavior analysis, another network threat detection option to consider.
I’m excited to announce that the Alarms tab in our next version of our network threat detection solution will include index enhancements. Specifically, the “Threat Index” is a value placed on any host that our propriety threat detection algorithms mark as suspicious. The concept of a threat index or security index is not new. It …
Today I want to discuss how you can use Netflow and IPFIX for network security and even threat detection. There are quite a few different ways we can achieve this either through custom made alerts for suspicious traffic patterns or through our default algorithm based network threat detection routines. With network security becoming more and …
Our NetFlow Analyzer for the iPhone takes Network traffic monitoring to a whole new dimension. Aside from receiving email alerts on network threats, you now have the ability to dive into NetFlow Analysis right on your iPhone. From anywhere, get detailed information on your network traffic, and quickly initiate an informed response to network threats.
The few debates that have emerged over NetFlow Vs. sFlow often highlight why one technology is better than the other. In this post, I would like to emphasize where the technologies are similar as well as where they should be implemented (i.e. one over the other). Certainly both have some merits but, one technology is definitely …
A month ago I was on a call with a hardware vendor that exports flows and he asked “What else should we be exporting with NetFlow v9?”. This is a great question and fortunately almost any information observed by the flow exporter or passing through it can be exported in NetFlow v9 or IPFIX. Generally …
What can be exported as a Flow: Use NetFlow v9 or IPFIX? Read More »
Managed Security Service Providers are depending on NetFlow and IPFIX as one of the top 3 enablers for improving network threat detection. The distributed NetFlow collection nature of this technology allows security teams to gain threat insight into remote areas without actually visiting them. Most firewalls today including those from Barracuda, Cisco ASA, Palo Alto …
Managed Security Service Providers: Network Threat Detection Read More »