NetFlow Analyzer Best Practices, Tips, Tricks. Agenda Professional vs Enterprise Edition System Requirements Storage Settings Performance Tuning Configure.

Slides:



Advertisements
Similar presentations
Abstract There is significant need to improve existing techniques for clustering multivariate network traffic flow record and quickly infer underlying.
Advertisements

Why AAA Digital Document Solutions? Are you still storing documents in file cabinets? Do you have a plan in case of fire or natural disaster? Is your company.
ICmyNet.Flow Network Traffic Analysis System If You Want to See Your Net
Windows DX 66 megahertz (MHz) or faster processor (Pentium central processing unit recommended). 16 megabytes (MB) of memory (24 MB recommended).
Scale-out Central Store. Conventional Storage Verses Scale Out Clustered Storage Conventional Storage Scale Out Clustered Storage Faster……………………………………………….
Novell Server Linux vs. windows server 2008 By: Gabe Miller.
Monitoring a Large-Scale Network: Selecting the Right Tool Sayadur Rahman United International University & Network Manager, Financial Service.
Packard BioScience. Packard BioScience What is ArrayInformatics?
Network Administration Procedures Tools –Ping –SNMP –Ethereal –Graphs 10 commandments for PC security.
NetFlow Analyzer Drilldown to the root-QoS Product Overview.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
 Contents 1.Introduction about operating system. 2. What is 32 bit and 64 bit operating system. 3. File systems. 4. Minimum requirement for Windows 7.
Virtual Desktop Infrastructure Solution Stack Cam Merrett – Demonstrator User device Connection Bandwidth Virtualisation Hardware Centralised desktops.
16.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 16: Examining Software Update.
Deploying and Managing Windows Server 2012
Acceleratio Ltd. is a software development company based in Zagreb, Croatia, founded in We create innovative software solutions for SharePoint,
1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.
Internet Service Provisioning Phase - I August 29, 2003 TSPT Web:
Fundamentals of Networking Discovery 1, Chapter 2 Operating Systems.
Report : Zhen Ming Wu 2008 IEEE 9th Grid Computing Conference.
Hands-On Microsoft Windows Server 2008
WINDOWS XP PROFESSIONAL Bilal Munir Mughal Chapter-1 1.
Installing Microsoft Windows Server 2008 Lesson 2.
Net Optics Confidential and Proprietary Net Optics appTap Intelligent Access and Monitoring Architecture Solutions.
Network Flow-Based Anomaly Detection of DDoS Attacks Vassilis Chatzigiannakis National Technical University of Athens, Greece TNC.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 7: Domain Name System.
Installing and Configuring IIS. Reliable IIS 6.0 uses a new request-processing architecture and application-isolation environment that enables individual.
Ch 6. Performance Rating Windows 7 adjusts itself to match the ability of the hardware –Aero Theme v. Windows Basic –Gaming features –TV recording –Video.
Technical Details – SAN PHARMA SFA. Front End / Back End Details  ASP  ASP.net  XML  JAVA Script  DHTML  MS SQL SERVER.
NetFlow: Digging Flows Out of the Traffic Evandro de Souza ESnet ESnet Site Coordinating Committee Meeting Columbus/OH – July/2004.
TELE 301 Lecture 10: Scheduled … 1 Overview Last Lecture –Post installation This Lecture –Scheduled tasks and log management Next Lecture –DNS –Readings:
Hardware Trends. Contents Memory Hard Disks Processors Network Accessories Future.
Hosting on a managed server hosted by TAG  No technical support required  Full backup of database and files  RAID 5 system means that if a hard drive.
Designing and Deploying a Scalable EPM Solution Ken Toole Platform Test Manager MS Project Microsoft.
Module 11: Implementing ISA Server 2004 Enterprise Edition.
Testing… Testing… 1, 2, 3.x... Performance Testing of Pi on NT George Krc Mead Paper.
Module 9: Implementing Caching. Overview Caching Overview Configuring General Cache Properties Configuring Cache Rules Configuring Content Download Jobs.
Project Requirements (NetFlow Generator) 정승화 분산 처리 및 네트워크 관리 연구실 포항 공과 대학교
Open-Eye Georgios Androulidakis National Technical University of Athens.
Bosch DSA Storage (based on NetApp E2700)
The Million Point PI System – PI Server 3.4 The Million Point PI System PI Server 3.4 Jon Peterson Rulik Perla Denis Vacher.
ITGS Network Architecture. ITGS Network architecture –The way computers are logically organized on a network, and the role each takes. Client/server network.
 System Requirements are the prerequisites needed in order for a software or any other resources to execute efficiently.  Most software defines two.
POSTECH DP&NM Lab Detailed Design Document NetFlow Generator 정승화 DPNM Lab. in Postech.
1 Minneapolis‘ IETF IPFIX Aggregation draft-dressler-ipfix-aggregation-00.txt.
2: Operating Systems Networking for Home & Small Business.
Computer Performance. Hard Drive - HDD Stores your files, programs, and information. If it gets full, you can’t save any more. Measured in bytes (KB,
Hands-On Microsoft Windows Server 2008 Chapter 7 Configuring and Managing Data Storage.
ITMT 1371 – Window 7 Configuration 1 ITMT Windows 7 Configuration Chapter 8 – Managing and Monitoring Windows 7 Performance.
Configuring SQL Server for a successful SharePoint Server Deployment Haaron Gonzalez Solution Architect & Consultant Microsoft MVP SharePoint Server
1 Netflow Collection and Aggregation in the AT&T Common Backbone Carsten Lund.
Introducing Windows Vista Lesson 1. Skills Matrix Technology SkillObjective DomainObjective # Understanding Windows Vista System Requirements Identify.
Step-by-Step Guide to Asynchronous Data (File) Replication (File Based) over a WAN Supported by Open-E ® DSS™ Software Version: DSS ver up85 Presentation.
Installing VMware ESX and ESXi
Presenting and aggregating network statistics with Stager
Integrated Management System
W3 Status Analyzer.
Securing the Network Perimeter with ISA 2004
CMS Central Version 1.0 Made by Eden Sun Jan 2010.
Software Architecture in Practice
Network Performance Insight PoC Performance Readout
Get to know SysKit Monitor
NetFlow Analysis with Elastic Stack
Design Unit 26 Design a small or home office network
GRAPHIC ALARM MANAGEMENT SYSTEM
PlanetFlow The PlanetLab Network Auditing Service Mark Huang
IP Control Gateway (IPCG)
Hybrid Buffer Pool The Good, the Bad and the Ugly
Presentation transcript:

NetFlow Analyzer Best Practices, Tips, Tricks

Agenda Professional vs Enterprise Edition System Requirements Storage Settings Performance Tuning Configure Flow Exports

Agenda.. Application Groups IP Groups Reports ASAM

Prof vs EE Professional Edition Up to 600 interfaces Standalone version Enterprise Edition Up to 20,000 interfaces Scalable Central – Collector architecture Distributed networks

System Requirments Flow RateProcessorRAMHDD 0 to Ghz Dual2 GB250 GB 3000 to GHz Dual4 GB600 GB 6000 to GHZ Quad8 GB1 TB (High Speed SATA or SAS Drive) Above GHz Quad8 GB1 TB (High Speed S ATA or SAS Drive with RAID 0 or RAID 10 config)

Central Server Configuration

Storage Settings NetFlow Analyzer classifies data into 2 types namely Aggregated Data and the Raw Data. The amount of hard disk space required to store the aggregated data forever is about 150 MB per interface. You will require a free disk space of 2MB to store one month of one minute traffic data for a single interface.

Raw Data Free hard disk space - (150 MB * No. of Managed Interfaces) Raw Data Period (in hours) = Bytes * 3600 seconds * Flows Per Second The maximum raw data storage period is 1 month and the minimum is a day.

JVM Configuration Admin  Performance Tuning Select the RAM View the Recommended Settings and Update You can also change the Maximum Java Memory and update

Configuring Flow Export Make sure the time in the router is correct time Netflow Analyer can handle routers from different time zones automatically, provided the correct time is set. Whenever the time difference between the NetFlow Analyzer Server and the router is above 10 minutes a warning icon will appear in the home page.

Application Groups The Application Mapping option lets you configure the applications identified by NetFlow Analyzer. Applications are categorized based on the source address, destination address, source port, destination port and protocol values in the flow record. These values are matched with the list of applications in the Application Mapping.

IP Groups Monitor Departmental Traffic Monitor Branch Office Bandwidth usage

Reports Schedule Reports Generate Reports based on IP Groups

ASAM Generate Security Events – Bad Src –Dst – Suspect Flows – Probe / Scans – Dos / Flash crowd

Thanks

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.