Traffic Analysis With Netflow. The Key to Network Visibility



Similar documents
Traffic Analysis with Netflow The Key to Network Visibility

Network Visibility Guide

Best Practices for NetFlow/IPFIX Analysis and Reporting

Application Visibility and Monitoring >

Stopping The Application Management Blame Game Through Integrated IT Management Tools.

ICND2 NetFlow. Question 1. What are the benefit of using Netflow? (Choose three) A. Network, Application & User Monitoring. B.

Network Management and Monitoring Software

CISCO INFORMATION TECHNOLOGY AT WORK CASE STUDY: CISCO IOS NETFLOW TECHNOLOGY

whitepaper Network Traffic Analysis Using Cisco NetFlow Taking the Guesswork Out of Network Performance Management

Gaining Operational Efficiencies with the Enterasys S-Series

Introduction. The Inherent Unpredictability of IP Networks # $# #

Application Monitoring and Network Visibility A complete view of your network

Riverbed SteelCentral. Product Family Brochure

Using Application Response to Monitor Microsoft Outlook

Riverbed SteelCentral. Product Family Brochure

Diagnosing the cause of poor application performance

SolarWinds Network Performance Monitor

SolarWinds Network Performance Monitor powerful network fault & availabilty management

Cisco IOS Flexible NetFlow Technology

Observer Reporting Server Sample Executive Reports

SolarWinds Network Performance Monitor

SNMP Monitoring: One Critical Component to Network Management

Network Performance Monitoring at Minimal Capex

E-Guide. Sponsored By:

Cisco Prime Network Analysis Module Software 5.1 for WAAS VB

Closing The Application Performance Visibility Gap Inherent To Citrix Environments

Troubleshooting LANs with Network Statistics Analysis

Delivering actionable service knowledge

Network Management Deployment Guide

NetQoS Delivers Distributed Network

Observer Analysis Advantages

WAN Optimization Integrated with Cisco Branch Office Routers Improves Application Performance and Lowers TCO

with NetFlow Technology Adam Powers Chief Technology Officer

Edge Configuration Series Reporting Overview

White Paper. The Ten Features Your Web Application Monitoring Software Must Have. Executive Summary

Remote Network Monitoring Software for Managed Services Providers

pt360 FREE Tool Suite Networks are complicated. Network management doesn t have to be.

RIVERBED APPRESPONSE

Network Monitoring Comparison

SOLARWINDS NETWORK PERFORMANCE MONITOR

Extending Network Visibility by Leveraging NetFlow and sflow Technologies

Achieving Service Quality and Availability Using Cisco Unified Communications Management Suite

Unified network traffic monitoring for physical and VMware environments

Managing Central Monitoring in Distributed Systems

Optimize Your Microsoft Infrastructure Leveraging Exinda s Unified Performance Management

Business case for VoIP Readiness Network Assessment

Cisco NetFlow Generation Appliance (NGA) 3140

Cisco Bandwidth Quality Manager 3.1

LiveAction: GUI-Based Management and Visualization for Cisco Intelligent WAN

Information Technology Solutions

Application Performance Management

THE CONVERGENCE OF NETWORK PERFORMANCE MONITORING AND APPLICATION PERFORMANCE MANAGEMENT

Orion Network Performance Monitor

mbits Network Operations Centrec

ALCATEL-LUCENT VITALSUITE Application & Network Performance Management Software

How-To Configure NetFlow v5 & v9 on Cisco Routers

Network traffic monitoring and management. Sonia Panchen 11 th November 2010

Network Performance + Security Monitoring

See all, manage all is the new mantra at the corporate workplace today.

Beyond Monitoring Root-Cause Analysis

NetFlow Tips and Tricks

Smart Reporting: Using Your Service Desk to Better Manage Your IT Department

Empowering the Enterprise Through Unified Communications & Managed Services Solutions

Cisco and Visual Network Systems: Implement an End-to-End Application Performance Management Solution for Managed Services

White Paper: Troubleshooting Remote Site Networks Best Practices

Application Performance Management for Enterprise WANs

Wyse Device Manager TM

Managed Service Plans

STEELCENTRAL APPRESPONSE

Network-Wide Class of Service (CoS) Management with Route Analytics. Integrated Traffic and Routing Visibility for Effective CoS Delivery

Wireless Network Analysis. Complete Network Monitoring and Analysis for a/b/g/n

SolarWinds Certified Professional. Exam Preparation Guide

Network Performance Management Solutions Architecture

Elevating Data Center Performance Management

Flow Publisher v1.0 Getting Started Guide. Get started with WhatsUp Flow Publisher.

SatManage Overview. SatManage Tools. SatManage Core NOC Toolset Auto HelpDesk Mobility Customer Management Traffic Analysis

Enhancing Flow Based Network Monitoring

MSP. HOW MSPs Can Use Performance Monitoring to Create New Revenue Streams. [ WhitePaper ] Introduction

OneSight Voice Quality Assurance

Alcatel-Lucent VitalSuite Performance Management Software for the Enterprise

FIREWALL CLEANUP WHITE PAPER

Network Instruments white paper

Network Monitoring as an essential component of IT security

Proactive. Professional. IT Support and Remote Network Monitoring.

OptiView. Total integration Total control Total Network SuperVision. Network Analysis Solution. No one knows the value of an

SapphireIMS 4.0 BSM Feature Specification

PacketTrap One Resource for Managed Services

Transcription:

Summary Today, Enterprises know that the WAN is one of their most important assets. It needs to be up and running 24x7 for the enterprise to function smoothly. To make this possible, IT administrators need to have a clear understanding of where WAN traffic is headed across the network and who s responsible for it. Traditional traffic analysis uses hardware probes or packet analyzers to offer granular and detailed information on network traffic. However, hardware probes require complex deployment procedures, and typically do not account for IPsec traffic. Packet analyzers produce copious results that do not offer direct insight into application-specific traffic. ManageEngine UK Distributor ManageEngine White Paper: Traffic Analysis With Netflow. The Key to Network Visibility As a result, IT managers are faced with an increased troubleshooting cycle, and an extended time to make critical decisions affecting the network. Pag Contents e The Need For Network Visibility 2 Today with Cisco s Netflow innovation, traffic analysis takes far less time and effort and yields much bigger benefits to the enterprise. Netflow makes it possible to collect granular details on IP traffic continuously, without affecting device performance or increasing costs. Traffic Analysis: The Key To Network Visibility Cisco Netflow: Powering Traffic Analysis Netflow Analyzer: Effective Netflow Analysis 2 2 3 Using exported NetFlow data, ManageEngine NetFlow Analyzer from Networks Unlimited, gives IT managers the visibility they need in order to understand the WAN. Armed with powerful instant reports on top talkers, conversations, and more, NetFlow Analyzer tells IT exactly what they need to know in order to troubleshoot, or forecast capacity on the WAN. Working Together: 3 Cisco Netflow & Netflow Analyzer Netflow Analyzer at Work: Increasing Visibility + Effective Traffic Analysis 4 WAN Traffic Analysis: 6 Key To Network Optimisation Other Information 6 1

The Need For Network Visibility The distributed nature of today s enterprise presents network administrators with a series of operational and infrastructure challenges. IT teams are constantly required to troubleshoot network problems on the WAN quickly, and restore performance levels whenever low, but they typically lack the visibility needed to find the root cause of the problem. To overcome these challenges, IT needs complete visibility of the traffic traversing the WAN detailed insight that allows them to monitor and record activity to understand how the network, applications, and users, are interacting. Complete network visibility is possible only when an effective traffic analysis solution is in place. According to a recent study by independent research firm Nemertes Research, the average 1000- person company spends more than $216,000 per year troubleshooting outages on fixed remoteaccess services and that s just to identify the trouble. Traffic Analysis: The Key To Network Visibility Traffic analysis helps IT managers answer important questions about their network including:! Are critical business applications getting a fair share of available bandwidth?! How to identify rogue applications and viruses on the network?! Why is this WAN link congested?! Which applications and users are using bandwidth Effective traffic analysis needs to be fast, simple, and efficient. It needs to be comprehensive and, at the same time, should not tax the device from which traffic data is collected. This is where the power of Cisco NetFlow comes in Cisco Netflow: Powering Traffic Analysis Cisco offers an innovative approach to traffic analysis by adding the Netflow feature set to its devices. Netflow gives a Cisco router the ability to collect IP network traffic data as it enters an interface. Since the router itself is used as a probe, Netflow data is gathered with no capital investment, and low deployment costs. Netflow measures and analyzes network traffic whilst offering several advantages over hardware probes and other traditional traffic analysis tools.! Low capital investment: Since most enterprise networks are already instrumented with Cisco routers! Simple configuration: To set up Netflow on a router interface! Completeness of data: As Netflow measures and reports automatically on all application traffic (most probes need to be configured for each traffic type)! Low lifecycle maintenance: Since Netflow capabilities are tied to the Cisco router hardware/software maintenance 2

Netflow does introduce a small increase in the CPU utilization of the configured routers, (the amount of increase on router CPU utilization varies by router platform and the number of flows traversing the router) but the level of detail offered, coupled with the low-cost and ease of deployment make it the best choice for in-depth traffic analysis. Once collected, Netflow data needs to be analyzed and reported on, in order to enable quick and efficient traffic analysis. Netflow data analysis tools are abundant in the market, but NetFlow Analyzer offers several advantages for simple and affordable traffic analysis. Netflow Analyzer: Effective Netflow Analysis ManageEngine NetFlow Analyzer, is a web-based tool that analyzes Netflow exports from Cisco routers to provide indepth information about network traffic including, traffic volume, top talkers, bandwidth consumption, and high usage times. The information provided by NetFlow Analyzer helps IT in the following tasks: 1. Identifying Top Talkers and Conversations: Determine which users and what applications are using maximum bandwidth, and drill down for conversational details 2. Projecting Traffic Trends and Usage Patterns: View trends in network traffic, and determine top applications and peak usage times 3. Defining Applications to Recognize Specific Traffic: Use a combination of ports and protocols to define unlimited applications, and recognize this traffic exclusively in traffic reports 4. Determining Bandwidth Usage per Department: Define departments based on IP addresses, and identify bandwidth usage and application usage for each department. 5. Managing Netflow Devices Exclusively: Categorize devices exporting Netflow data into logical groups, and view traffic reports exclusively 6. Increasing Accounting Accuracy: Improve resource utilization accounting with real-time bandwidth and network usage statistics Working Together: Cisco Netflow with Netflow Analyzer NetFlow Analyzer and Cisco Netflow work together to enable complete network visibility through efficient traffic analysis 3

Netflow Analyzer at Work: Increasing Visibility with Effective Traffic Analysis The analysis capabilities in NetFlow Analyzer enable IT to improve overall WAN performance. Scenarios can best illustrate how NetFlow Analyzer isolates performance problems, and aids in troubleshooting. Scenario 1: Ending The Blame Game Setting: A large national corporation with a central campus supporting multiple remote offices throughout the U.S. The helpdesk receives a call from one of the remote sites complaining that users cannot reach the email server. The caller s initial diagnosis is that the WAN is down. For IT, the first step is to determine whether the problem is indeed with the respective WAN link. A quick glance at the traffic reports tells the IT technician that traffic peaks are within acceptable limits, eliminating the WAN as the culprit. Next, IT must narrow down the search and determine if all applications at the remote site are affected, or just e-mail is failing. Traffic reports for the WAN link show that traffic peaks are within acceptable limits By pulling out the Top Applications report, the technician gets an at-a-glance view of current traffic levels for the top hundred applications running to the remote site. Surprisingly, e-mail traffic is not counted as a significant contribution. He suspects the problem could be with the mail server. The Top Applications report shows current traffic levels for top applications running to the remote site 4

Now the technician approaches the e-mail team, which performs its own investigation, and discovers that the e-mail process on the server supporting the remote site in question has failed. The problem is quickly resolved, and e-mail service at the site is promptly restored. Using NetFlow Analyzer, IT was able to quickly end the finger pointing by eliminating the WAN as a suspect and narrowing the search to the e-mail server. By providing the e-mail team with detailed performance information, IT helped them identify and fix the problem. Scenario 2: Troubleshooting Setting: A distributed international organization with many remote sites around the globe. Users across the Asia-Pacific link can t gain access to key financial applications or server resources. The IT operator receiving the call needs to first know what is on the network now. She opens the real-time traffic report on the corresponding network interface and notices a curious spike in traffic rate occurring ten minutes ago. She wants to investigate further into this spike. Curious spike in traffic report indicates suspicious activity Opening the Top Applications report for that time interval, the operator finds an unusually high percentage of ms-sql traffic, indicating that the SQL Slammer virus is active on the network. She now wants a comprehensive list of all the hosts infected with the virus, and so drills down from the Top Applications report to see the Top Conversations report. The Top Applications drill down report shows the top conversations that have used that application 5

This report shows the top conversations that have used the ms-sql protocol. In a matter of minutes, the operator has identified the problem and the hosts that have been affected. From this point, the operator alerts the security team that quarantines the infected hosts and proceeds to stop the virus from spreading. Thanks to NetFlow Analyzer, the operator was able to identify a virus and track down the infected hosts within minutes, saving valuable network downtime and security compromises. WAN Traffic Analysis Key To Network Optimisation WAN traffic analysis plays an important role in today s enterprise, providing critical centralized visibility into how the WAN, applications, and remote users are operating. By allowing IT to observe WAN behavior as it relates to business operations, WAN traffic analysis solutions can help locate where a problem originated, isolate the cause and source of the problem, and provide historical performance information that allows IT to optimize current performance while effectively planning for future growth and expansion. NetFlow Analyzer is an in-depth WAN traffic analysis solution that helps IT end the blame game, focus and streamline their troubleshooting efforts, and optimize WAN performance through effective capacity planning. Complementing the level of granularity and accuracy that Cisco Netflow provides, NetFlow Analyzer provides an affordable, yet powerful solution for tapping this information with least impact on the performance of devices and the network. Using the Cisco Netflow and NetFlow Analyzer combination, an enterprise can maximize their infrastructure investments, address the multitude of WAN challenges, and reduce complexity by eliminating the need for multiple point products. Other Information NetFlow Analyzer is available for purchase immediately, with prices starting at 520 for a 10-interface pack. A Free Edition is available that can report on NetFlow data exported from a maximum of two routing interfaces. A free 30-day evaluation can be downloaded from the website. For more details on ManageEngine Netflow Analyzer visit http://www.manageengine.co.uk To understand how it can help you manage your network, systems, and applications seamlessly, please contact Networks Unlimited on +44 (0)1798 873001 or at sales@manageengine.co.uk 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information