NetFlow Analyzer generate and show alerts once the configured threshold is violated, you can create Alert profiles based on you requirement from Settings -> NetFlow -> Aggregated/Real-Time Alert Profiles. Alerts are generated based on the RAW data collected in the database.
You can see the alerts and its events based on the severity configured in Alert Profile like Critical, Trouble, Attention and Service down. You can click on the severity to get the list of Alarms generated for that severity.
You can click on the Filter icon to change the view of the Alarms in NetFlow Analyzer, also you can sort the alarms by time on which it is generated by clicking on the icon on the left side column.
List up all the recent active alarms.
|All Alarms||List up all the alarms for all category|
|NFA Alarms||List only NetFlow Alarms|
|NCM Alarms||List only Network Configuration Add-on alarms|
|Severity||List Alarms based on severity an event has occurred|
|Category||List all category alarms|
You can set the different view from the right hand side top for Alarms to display under the Alarms tab using the below option:
|List view||Allows you to view the Alarms in list view|
|Block view||Allows you to view the Alarms in Block view|
|Color view||Shows Alarms and events in color view based on severity|
|Sorting||You can sort the Alarms based on Message, Source, Category, Technician, Severity, Time.|
|Search||Allows you to search Alarms based on Message, Source, Category, Technician, Severity, Time.|
You can click on each alarm for a detailed view on the Alert generated, and view the Traffic and Application statistics during the time the Alert was generated. Any technician who checks the alert can add notes for others to understand.
You can also delete an Alert form the view by selecting the Alert and then click on the delete icon on the right side top.
When an threshold is violated in your network, an event occurs and multiple events correlate to trigger an alarm. An event can not be deleted from the UI. Event for an Alert is stored for 7 days by default in the database and deleted automatically.
NetFlow Analyzer allows you to customise alerts and the type of notification. You can choose to be notified via SMS, email, SNMP trap or log a ticket.
For emails alerts, you must provide details such as the To email address and the email subject.
For SNMP Trap you must provide Server:Port:Community details.
You can receive SMS notifications by providing the mobile number.
NetFlow Analyzer also allows you to log alerts as SDP tickets. Service desk plus is available as an plug-in, and it has to be integrated with NetFlow Analyzer under Settings → Basic Settings → Add-ons/Products Integration → ServiceDesk Plus and configure the ServiceDesk Plus add-on integration, for this option to be available.
For logging the alert as a ticket, provide ticket details such as category, priority, and group. You can also assign it to a particular technician based on severity and category of the alert. Every time an alert is generated, it will automatically be logged in as an SDP ticket and assigned to the particular technician, based on the details provided. You create a private knowledge base in SDP to resolve repetitive network bottlenecks quickly. You can also announce known network issues in SDP’s ‘announcements’ to help reduce number of tickets created for the same issue.