Traffic Analysis with Netflow The Key to Network Visibility



Similar documents
Traffic Analysis With Netflow. The Key to Network Visibility

Network Visibility Guide

Best Practices for NetFlow/IPFIX Analysis and Reporting

ICND2 NetFlow. Question 1. What are the benefit of using Netflow? (Choose three) A. Network, Application & User Monitoring. B.

Application Visibility and Monitoring >

How To Manage A Network For A Small Business

Network Management and Monitoring Software

whitepaper Network Traffic Analysis Using Cisco NetFlow Taking the Guesswork Out of Network Performance Management

Stopping The Application Management Blame Game Through Integrated IT Management Tools.

Application Monitoring and Network Visibility A complete view of your network

CISCO INFORMATION TECHNOLOGY AT WORK CASE STUDY: CISCO IOS NETFLOW TECHNOLOGY

Gaining Operational Efficiencies with the Enterasys S-Series

Introduction. The Inherent Unpredictability of IP Networks # $# #

Stopping The Application Management Blame Game Through Integrated Infrastructure Management Tools.

Using Application Response to Monitor Microsoft Outlook

Riverbed SteelCentral. Product Family Brochure

Monitoring your WAN When, What and How

Riverbed SteelCentral. Product Family Brochure

Diagnosing the cause of poor application performance

SolarWinds Network Performance Monitor

SolarWinds Network Performance Monitor powerful network fault & availabilty management

Cisco IOS Flexible NetFlow Technology

SolarWinds Network Performance Monitor

SNMP Monitoring: One Critical Component to Network Management

Diagnosing the cause of poor application performance

Network Performance Monitoring at Minimal Capex

Cisco Prime Network Analysis Module Software 5.1 for WAAS VB

Closing The Application Performance Visibility Gap Inherent To Citrix Environments

Troubleshooting LANs with Network Statistics Analysis

Free Network Monitoring Software for Small Networks

Managing Application Delivery from the User s Perspective

Network Management Deployment Guide

NetQoS Delivers Distributed Network

Extending Network Visibility by Leveraging NetFlow and sflow Technologies

Observer Analysis Advantages

WAN Optimization Integrated with Cisco Branch Office Routers Improves Application Performance and Lowers TCO

Application Visibility A Recipe for Conducting Successful Virtualization Projects

with NetFlow Technology Adam Powers Chief Technology Officer

Edge Configuration Series Reporting Overview

E-Guide. Sponsored By:

White Paper. The Ten Features Your Web Application Monitoring Software Must Have. Executive Summary

Information Technology Solutions

pt360 FREE Tool Suite Networks are complicated. Network management doesn t have to be.

Observer Reporting Server Sample Executive Reports

SOLARWINDS NETWORK PERFORMANCE MONITOR

Network Monitoring Comparison

How To Make A Network Safer With Stealthwatch

Achieving Service Quality and Availability Using Cisco Unified Communications Management Suite

Network Instruments white paper

Optimize Your Microsoft Infrastructure Leveraging Exinda s Unified Performance Management

Flow Publisher v1.0 Getting Started Guide. Get started with WhatsUp Flow Publisher.

Proven techniques and best practices for managing infrastructure changes

Cisco NetFlow Generation Appliance (NGA) 3140

Cisco Bandwidth Quality Manager 3.1

Remote Network Monitoring Software for Managed Services Providers

LiveAction: GUI-Based Management and Visualization for Cisco Intelligent WAN

Network-Wide Class of Service (CoS) Management with Route Analytics. Integrated Traffic and Routing Visibility for Effective CoS Delivery

RIVERBED APPRESPONSE

MSP. HOW MSPs Can Use Performance Monitoring to Create New Revenue Streams. [ WhitePaper ] Introduction

Application Performance Management

THE CONVERGENCE OF NETWORK PERFORMANCE MONITORING AND APPLICATION PERFORMANCE MANAGEMENT

Delivering actionable service knowledge

Network Performance Management Solutions Architecture

Orion Network Performance Monitor

Unified network traffic monitoring for physical and VMware environments

How-To Configure NetFlow v5 & v9 on Cisco Routers

Network Performance + Security Monitoring

See all, manage all is the new mantra at the corporate workplace today.

Managing Central Monitoring in Distributed Systems

Beyond Monitoring Root-Cause Analysis

NetFlow Tips and Tricks

A FAULT MANAGEMENT WHITEPAPER

Cisco and Visual Network Systems: Implement an End-to-End Application Performance Management Solution for Managed Services

White Paper: Troubleshooting Remote Site Networks Best Practices

XRoads Networks, Inc.

OpManager MSP Edition

SolarWinds. NetFlow Traffic Analyzer. Evaluation Guide. Version 4.2

Enhancing Network Monitoring with Route Analytics

Business case for VoIP Readiness Network Assessment

How to Turn Your Network into a Strategic Business Asset with Purview EBOOK

Wireless Network Analysis. Complete Network Monitoring and Analysis for a/b/g/n

Wyse Device Manager TM

SolarWinds Certified Professional. Exam Preparation Guide

Caligare Flow Inspector

How Route Analytics Enables Virtualization and Cloud Computing

ALCATEL-LUCENT VITALSUITE Application & Network Performance Management Software

Elevating Data Center Performance Management

Technical white paper Troubleshooting the top VoIP call quality issues

TECH TIPS 4 STEPS TO FORECAST AND PLAN YOUR NETWORK CAPACITY NEEDS

Avanade ViewX Technology

Network traffic monitoring and management. Sonia Panchen 11 th November 2010

Enhancing Flow Based Network Monitoring

Alcatel-Lucent VitalSuite Performance Management Software for the Enterprise

PLA 7 WAYS TO USE LOG DATA FOR PROACTIVE PERFORMANCE MONITORING. [ WhitePaper ]

How to configure an Advanced Expert Probe as NetFlow Collector

9 Steps to Selecting and Implementing an IP Business Phone System

FIREWALL CLEANUP WHITE PAPER

Distributed-Enterprise Network Traffic Informatics A CIO s hand guide >>WHITE PAPER

Network Instruments white paper

Enterprise Network Traffic Informatics

Transcription:

Traffic Analysis with Netflow The Key to Network Visibility > WHITEPAPER Executive Summary Enterprises today, know that the WAN is one of their most important assets. It needs to be up and running 24x7 for the enterprise to function smoothly. To make this possible, IT administrators need to have a clear understanding of where WAN traffic is headed across their network, and who s responsible for it. Traditional traffic analysis uses hardware probes or packet analyzers to offer granular and detailed information on network traffic. However, hardware probes require complex deployment procedures, and typically do not account for IPsec traffic. And packet analyzers produce copious results that do not offer direct insight into application-specific traffic. As a result, IT is faced with an increased troubleshooting cycle, and an extended time to make critical decisions affecting the network. Today with Cisco s Netflow innovation, traffic analysis takes far less time and effort, and yields much bigger benefits to the enterprise. Netflow makes it possible to collect granular details on IP traffic continuously, without affecting device performance or increasing costs. Using this exported NetFlow data, ManageEngine NetFlow Analyzer from AdventNet, gives IT the visibility that they need to understand the WAN. Armed with powerful instant reports on top talkers, conversations, and more, NetFlow Analyzer tells IT exactly what they need to know in order to troubleshoot, or forecast capacity on the WAN. 1

> WHITEPAPER Traffic Analysis with Netflow The Need for Network Visibility According to a recent study by independent research firm Nemertes Research, the average 1000-person company spends more than $216,000 per year troubleshooting outages on fixed remote-access services and that s just to identify the trouble. The distributed nature of today s enterprise presents network administrators with a series of operational and infrastructure challenges. IT teams are constantly required to troubleshoot network problems on the WAN quickly, and restore performance levels whenever low, but they typically lack the visibility needed to find the root cause of the problem. To overcome these challenges, IT needs complete visibility into the traffic traversing the WAN detailed insight that allows them to monitor and record activity to understand how the network, applications, and users, are interacting. Complete network visibility is possible only when an effective traffic analysis solution is in place. Traffic Analysis: The Key to Network Visibility Traffic analysis helps IT managers answer important questions about their network including: Are critical business applications getting a fair share of available bandwidth? How to identify rogue applications and viruses on the network? Why is this WAN link congested? Which applications and users are using bandwidth? Effective traffic analysis needs to be fast, simple, and efficient. It needs to be comprehensive, and at the same time, should not tax the device from which traffic data is collected. This is where the power of Cisco NetFlow comes in Cisco Netflow: Powering Traffic Analysis Cisco offers an innovative approach to traffic analysis by adding the Netflow feature set to its devices. Netflow gives a Cisco router the ability to collect IP network traffic data as it enters an interface. Since the router itself is used as a probe, Netflow data is gathered with no capital investment, and low deployment costs. Netflow as a tool to measure and analyze network traffic offers several advantages over hardware probes and other traditional traffic analysis tools. Cisco NetFlow Benefits Low capital investment since most enterprise networks are already instrumented with Cisco routers Simple configuration to set up Netflow on a router interface Completeness of data as Netflow measures and reports automatically on all application traffic (most probes need to be configured for each traffic type) Low lifecycle maintenance since Netflow capabilities are tied to the Cisco router hardware/software maintenance 2

> WHITEPAPER Traffic Analysis with Netflow Netflow does introduce a small increase in the CPU utilization of the configured routers, (the amount of increase on router CPU utilization varies by router platform and the number of flows traversing the router) but the level of detail offered, coupled with the low-cost and ease of deployment make it the best choice for in-depth traffic analysis. Once collected, Netflow data needs to be analyzed and reported on, in order to enable quick and efficient traffic analysis. Netflow data analysis tools are abundant in the market, but NetFlow Analyzer offers several advantages for simple and affordable traffic analysis. ManageEngine NetFlow Analyzer: Effective Netflow Analysis ManageEngine NetFlow Analyzer from AdventNet, is a web-based tool that analyzes Netflow exports from Cisco routers to provide in-depth information about network traffic including, traffic volume, top talkers, bandwidth consumption, and high usage times. The information provided by NetFlow Analyzer helps IT in the following tasks: NetFlow Analyzer in the Enterprise 1. Identifying Top Talkers and Conversations: Determine which users and what applications are using maximum bandwidth, and drill down for conversational details 2. Projecting Traffic Trends and Usage Patterns: View trends in network traffic, and determine top applications and peak usage times 3. Defining Applications to Recognize Specific Traffic: Use a combination of ports and protocols to define unlimited applications, and recognize this traffic exclusively in traffic reports 4. Determining Bandwidth Usage per Department: Define departments based on IP addresses, and identify bandwidth usage and application usage for each department. 5. Managing Netflow Devices Exclusively: Categorize devices exporting Netflow data into logical groups, and view traffic reports exclusively 6. Increasing Accounting Accuracy: Improve resource utilization accounting with real-time bandwidth and network usage statistics Working Together: Cisco Netflow with NetFlow Analyzer NetFlow Analyzer and Cisco Netflow work together to enable complete network visibility through efficient traffic analysis 3

> WHITEPAPER Traffic Analysis with Netflow NetFlow Analyzer at Work: Increasing Visibility with Effective Traffic Analysis The analysis capabilities in NetFlow Analyzer enable IT to improve overall WAN performance. Scenarios can best illustrate how NetFlow Analyzer isolates performance problems, and aids in troubleshooting. SCENARIO 1 Ending the Blame Game Setting: A large national corporation with a central campus supporting multiple remote offices throughout the U.S. The helpdesk receives a call from one of the remote sites complaining that users cannot reach the email server. The caller s initial diagnosis is that the WAN is down. For IT, the first step is to determine whether the problem is indeed with the respective WAN link. A quick glance at the traffic reports tells the IT technician that traffic peaks are within acceptable limits, eliminating the WAN as the culprit. Next, IT must narrow down the search and determine if all applications at the remote site are affected, or just e-mail is failing. Traffic reports for the WAN link show that traffic peaks are within acceptable limits Using NetFlow Analyzer, IT was able to quickly end the finger pointing by eliminating the WAN as a suspect and narrowing the search to the e-mail server. By providing the e-mail team with detailed performance information, IT helped them identify and fix the problem. By pulling out the Top Applications report, the technician gets an at-a-glance view of current traffic levels for the top hundred applications running to the remote site. Surprisingly, e-mail traffic is not counted as a significant contribution. He suspects the problem could be with the mail server. The Top Applications report shows current traffic levels for top applications running to the remote site Now the technician approaches the e-mail team, which performs its own investigation, and discovers that the e-mail process on the server supporting the remote site in question has failed. The problem is quickly resolved, and e-mail service at the site is promptly restored. 4

> WHITEPAPER Traffic Analysis with Netflow SCENARIO 2 Troubleshooting Setting: A distributed international organization with many remote sites around the globe. Users across the Asia-Pacific link can t gain access to key financial applications or server resources. The IT operator receiving the call needs to first know what is on the network now. She opens the real-time traffic report on the corresponding network interface, and notices a curious spike in traffic rate occurring ten minutes ago. She wants to investigate further into this spike. Curious spike in traffic report indicates suspicious activity Opening the Top Applications report for that time interval, the operator finds an unusually high percentage of ms-sql traffic, indicating that the SQL Slammer virus is active on the network. She now wants a comprehensive list of all the hosts infected with the virus, and so drills down from the Top Applications report to see the Top Conversations report. Thanks to NetFlow Analyzer, the operator was able to identify a virus and track down the infected hosts within minutes, saving valuable network downtime and security compromises. The Top Applications drill down report shows the top conversations that have used that application This report shows the top conversations that have used the ms-sql protocol. In a matter of minutes, the operator has identified the problem, and the hosts that have been affected. From this point, the operator alerts the security team that quarantines the infected hosts and proceeds to stop the virus from spreading. 5

> WHITEPAPER Traffic Analysis with NetFlow > WHITEPAPER WAN Traffic Analysis Key To Network Optimization WAN traffic analysis plays an important role in today s enterprise, providing critical centralized visibility into how the WAN, applications, and remote users are operating. By allowing IT to observe WAN behavior as it relates to business operations, WAN traffic analysis solutions can help locate where a problem originated, isolate the cause and source of the problem, and provide historical performance information that allows IT to optimize current performance while effectively planning for future growth and expansion. Conclusion NetFlow Analyzer is an in-depth WAN traffic analysis solution that helps IT end the blame game, focus and streamline their troubleshooting efforts, and optimize WAN performance through effective capacity planning. Complementing the level of granularity and accuracy that Cisco Netflow provides, NetFlow Analyzer provides an affordable, yet powerful solution for tapping this information with least impact on the performance of devices and the network. Using the Cisco Netflow and NetFlow Analyzer combination, an enterprise can maximize their infrastructure investments, address the multitude of WAN challenges, and reduce complexity by eliminating the need for multiple point products. Other Information NetFlow Analyzer is available for purchase immediately, with prices starting at $795 for a 10- interface pack. A Free Edition is available that can report on NetFlow data exported from a maximum of two routing interfaces. A free 30-day evaluation can be downloaded from the website. For other information please contact us. AdventNet, Inc. 5200 Franklin Dr, Suite 115 Pleasanton, CA 94588 USA +1 925 924 9500 support@netflowanalyzer.com www.netflowanalyzer.com 6

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information