Installation Guide - AWS - NetFlow Analyzer

How to install NetFlow Analyzer in AWS

Installing NetFlow Analyzer in AWS helps ensure enterprise-grade bandwidth and traffic monitoring for your network while eliminating the need for a physical server for flow data analysis.

You can use NetFlow Analyzer in AWS using one of the 2 methods:

By purchasing NetFlow Analyzer AMI from AWS store.
By installing NetFlow Analyzer in a separate EC2 instance.

Running NetFlow Analyzer from AMI

Purchase NetFlow Analyzer AMI from here.

While purchasing, you will be prompted to select the EC2 instance of your choice based on certain preconfiguration.
Select the required instance and launch AMI using admin as username and instanceid as password.

Note: When you access the NetFlow Analyzer using the public IP/DNS address, note that the "Public IP/DNS address" changes when the instance is stopped/terminated. As in a network, devices need to forward syslogs & traps to the NetFlow Analyzer server, the public IP has to be updated in the end devices every time it changes. Hence it is recommended to use an elastic IP address for seamless monitoring . For more details on Elastic IP address click here.

Running NetFlow Analyzer from EC2 instance

Pre-requisites

Before installing NetFlow Analyzer at AWS, ensure that you meet the following pre-requisites

Say if you are planning to manage up to 250 devices using NetFlow Analyzer, we recommend you to have the following instance configurations

EC2 instance type m4.xlarge or above
OS - Windows 10/8/7 or Windows server 2008 or above ( upto 2019 supported ).
20 GB memory space ( minimum )

Note: The above specified are the minimum requirements. You may have to change the configurations according to the number of devices you are monitoring and additional integrations / modules ( such as NetFlow, IP address management etc ). To know more about creating instance click here.
Ensure that the instance's Public IP/DNS is not blocked by any NetFlow and is accessible to all devices in your network.
Ensure that the required security ports are available for use.

Steps to install and run amazon from EC2 instance

Remotely connect to your EC2 instance
In that instance, open your web browser
Download and install NetFlow Analyzer.
Login to NetFlow Analyzer using username as admin and password as admin.

Important Note:
Ensure that the following ports in your NetFlow Analyzer instance are not blocked for proper functioning of NetFlow Analyzer and its add-ons ( this step is a must for running NetFlow Analyzer from AMI as well as for running NetFlow Analyzer from an EC2 instance):

Port Name	Default Port Numbers	Protocol	Usage	Direction
Web server port	8060	TCP	This is the port on which you will connect to the NetFlow Analyzer server from a web browser. You can change this at any time from the Settings tab.	Inbound
NetFlow Listener port	9996	UDP	This is the listener port on which NetFlow exports are received from routers. You can change this at any time from the Settings tab.	Inbound
Embedded database port	13306	TCP	This is the default port used to connect to the PostgreSQL database in NetFlow Analyzer.	N/A
MSSQL	1433	TCP	This is the port that connects NetFlow Analyzer to a SQL database.	N/A
SNMP	161	UDP	This is the default SNMP port to fetch the device information and configure SNMP based NBAR.	Bidirectional
Wrapper	32000-32999	TCP	Min & Max port usage.	N/A
JVM	31000-31999	TCP	To connect to Wrapper.	N/A
HTTPS Port	443	TCP	This is the port through which the probe communicates with the central server.	Bidirectional