Post on 19-Jan-2015
description
NetFlow Analyzer
Today’s Discussion
• What is NetFlow Analyzer?
• Editions
• Features – Base edition
• Features – Professional Plus edition
• Features – Enterprise edition
• Add ons
Overview
Need for Traffic Analytics
What is NetFlow Analyzer?
Bandwidth monitoring tool
Leverages flow technologies for reporting
Performs real-time traffic analytics
Security analytics add-on for foolproof security
Suitable for both SMBs and large Enterprises
What is NetFlow
Traffic passes through routing/switching device interface Flow created (remember Key fields) and stored in NetFlow cache Flows grouped and exported in UDP packets to collector based on
active and inactive flow timeout
How NetFlow Works
NetFlow Cache
Flow Analyzer
NetFlow Analyzer: Features Overview
Complete traffic & security
analysis
Cisco NetFlowTraffic reports
SLA Validation-IP SLA reports
QoS validation-
CBQoS reports
WAN optimization validation-
WAAS reports
Media monitoring -
Medianet reporting
Security analysis –
ASAM reports
Feature Overview
Editions
Professional:
1. Real time bandwidth usage reports
2. Top conversations, talkers and applications report
3. Alerts based on thresholds for traffic
4. IP grouping & device grouping
5. Cisco Medianet reports
6. Cisco WAAS reports
Professional Plus:
All Professional edition features
+
1. Capacity planning reports
2. Billing – Speed and volume based
3. Cisco QoS reports – For validation of QoS
4. Cisco NBAR reports – Deeper visibility
Enterprise
1. High scalability – Supports 1000s of routers and switches
2. Time-zone based reporting – For monitoring at the respective time-zones
3. Centralized view of the entire network
4. Automatics backup and crash recovery - Failover
Features
• Real time bandwidth usage reports
• Monitor real-time network traffic and identify the top talkers,
conversations, protocols and applications
• Create alerts based on allowable thresholds that your network can handle
• Cisco WAAS reports – Measure optimization of applications over WAN
• Cisco Medianet reports – Quick troubleshooting for networks handling
rich media applications
Professional edition(Base edition) features:
Quicker TroubleshootingApplication Slowness – Check link utilization
Quicker TroubleshootingCheck top applications – HTTP more than business application
Incorrect priority for business applicationQuicker Troubleshooting
Features
• Capacity Planning reports – Plan for the future based on trends from
bandwidth usage statistics from the past
• Billing – For usage and volume based billing for Service providers &
department-wise chargeback
• Cisco CBQoS reports – Validate the effectiveness of QoS policies on the
network & assign maximum priority to your business critical applications
over the other applications
• Cisco NBAR reports – Categorize applications that use dynamic ports like
eDonkey and Skype using NBAR reports with much deeper visibility
Professional Plus Exclusive features:
CBQoS reports: Screenshot
Screenshot
NBAR reports
Features:
• Highly scalable
• Distributed architecture: Central server & Collector model
• Centralized monitoring solution for large networks spread out on a wide
are
• Generate traffic reports, create alerts, QoS reports, NBAR reports & billing
as in Professional Plus edition
• Time zone based reporting – A special feature ensuring local monitoring
consoles see their network in their respective time zones
• Failover – An automatic data back up and crash recovery system for better
crisis handling
Enterprise edition
Need for Traffic Analytics
Create a high performing network Ensure optimal bandwidth usage Effect of network changes and new applications Validate QoS policies Performance of new technology: IPv6, MPLS, 10G or 100G,
voice and video traffic, etc.
Supported Devices
• NetFlow: All major Cisco devices• sFlow: Alcatel, Brocade – Foundry, Dell, Enterasys, Extreme, Force 10,
Fortinet, HP ProCurve, Juniper, Vyatta, etc. http://www.sflow.org/products
• J-Flow: Juniper devices• IPFIX : To be developed as the standard for flow export. Described in
RFC 3917. Based on NetFlow v9.
• AppFlow: Extension to IPFIX for application monitoring. Citrix NetScaler
captures app-specific network data and generates Appflow records• NetStream: Huawei / 3COM devices
Supported devices and Flow Formats
Add-ons
• Advanced Security Analytics Module
Uses Continuous Stream Mining Engine to monitor real-time security
statistics
Detect zero-day anomalies like DoS attacks, malware etc.
• IPSLA reporting
Ensure best-class service levels on the network
WAN RTT monitoring – For seamless connectivity
VoIP monitoring – Monitor critical factors like jitter, latency, packet loss
and MoS score
Add-Ons
ASAM: Screenshot
SLA Verification and Billing
SLA Verification and Billing
VoIP Quality IssuesAnalyze Application usage and VoIP Conversations
About NetFlow Analyzer
Questions?Over 4000 enterprises worldwide uses ManageEngine
NetFlow Analyzer for traffic analytics
NetFlow Analyzer: www.netflowanalyzer.com
TAC Team: netflowanalyzer-support@manageengine.com
Sales: sales@manageengine.com
NetFlow Analyzer Blogs: https://blogs.netflowanalyzer.com
User Forums: http://forums.netflowanalyzer.com