NetFlow Analyzer, the web-based network traffic analysis software, uses flow data such as NetFlow from Cisco devices, sFlow, J-Flow, IP FIX and more and stores them for analyzing and generating traffic reports. In simple terms, NetFlow Analyzer collects flow information, correlates them and presents the traffic statistics in more representable and understandable form. It offers real-time traffic graphs and reports to know about your traffic behavior and usage by applications, users, and their conversations.
With NetFlow Analyzer you can monitor network traffic in an interface specific level with one minute granularity. The selectable graph allows you to zoom in on the spikes. NetFlow analyzer also shows the data points, which gives the traffic IN and traffic OUT details such as speed, volume, packets and utilization of the total bandwidth.
Not only can you view the last hour to last quarter reports, the network traffic analysis solution also allows you to custom select the time period for which you want to view network traffic report. The reports can be exported as CSV or PDF as per your convenience. These reports can be quite useful when you are presenting to the top management. This helps NetFlow Analyzer to be effectively used as network traffic analyzer.
NetFlow Analyzer is a simple, unified network traffic analysis tool, that is easy to deploy and start working with. You can install NetFlow Analyzer on a Windows or Linux machine, and use just a web browser to access the client interface. After installing, export NetFlow data in case of Cisco routers/switches or any other supported flows to set up NetFlow Analyzer. Within minutes, graphs are plotted based on detailed network traffic analysis and reports are automatically generated by the network traffic analyzer software.
As soon as NetFlow data is received, graphs are generated showing details on incoming and outgoing traffic on the link for the last 10 minutes. From the dashboard you can identify which interface, applications, users, ports and protocols are consuming your maximum bandwidth. NetFlow Analyzer Dashboard allows you to customize your widgets and add them to get a glance of top information that you want to focus in your network.
You can start analyzing your traffic data with most intuitive bandwidth reports in Network Traffic Analyzer. Consolidated reports show you overall traffic statistics for each WAN link. Using this network traffic analysis system, you can view current traffic patterns, along with details on hosts, applications, and conversations generating traffic. Also, with reporting you can analyze network traffic trends to identify peak usage hours, link utilization metrics, and more. NetFlow analyzer also performs in-depth network packet analysis to give you a holistic view of application usage, protocol usage, and other utilization trends.
Incoming and outgoing traffic is analyzed to find out the top applications generating traffic on the network. From here you can drill down to see the top hosts and conversations for each application that is listed.
Before categorizing it as an attack there could be some unusual behaviour in your network. Analyze your network with security reports to follow the unusual behavior and categorize them as either malformed TCP packets or invalid TOS flows or invalid Src-Dest flows or others.
Refer resources
- Tapan D. Bhat
General Manager Head in Wipro Infotech