Securing Healthcare Networks Using NetFlow Analyzer - A case study
A not-for-profit health care system headquartered in California with operations across several states in western United States. This organization comprises of than 85 distinct business units, including 20 hospitals with over 3,100 beds, 18,800 employees, numerous clinics and outpatient facilities, 16 home care agencies and three joint-venture retirement centers.
If their WAN went down for any significant time, it had the potential of costing lives as well as thousands of dollars. So they wanted a system that could provide them with greater control over their network infrastructure. The core requirements were identified to be:
- Shorten any network downtime by reducing the Mean Time to Repair. They required a system that could produce proactive warnings so that they could address an issue even before the end users were impacted.
- Ensure optimum performance of their business critical applications by having a visibility into the applications on the network,
- Identify the top talkers in the network – top hosts and destinations
- Reduce cost associated with inaccurate bandwidth provisioning
- ManageEngine NetFlow Analyzer was deployed in this organization to collect and report on NetFlow statistics exproted from their Cisco equipment
Benefits : ME NFA allowed them to perform the following with ease.
- Knowing what traffic is using what bandwidth on the network which led to reduced time to troubleshoot network down time
- Track WAN activity by application, and to identify and track virus/worm attacks when they occur.
- They generate alarms based on thresholds by protocol and when traffic on specific port exceeds a predetermined volume on a specific interface.
- Shorter-duration network incidents, knowing what traffic is using what bandwidth on the network, and better capacity planning all indicate that they are benefiting, mainly from "soft dollar" savings by using NetFlow Analyzer.
- Availability of tons of data related to bandwidth consumption made them capable of estimating the kind of bandwidth requirements they had to make provision for accurately. This led to "actual dollar" savings