NetFlow Analyzer README

Readme

This ReadMe is divided into the following sections :

  1. Release Features
  2. System Requirements
  3. Installation and Setup
  4. Contact Information

 

Release Features

 

NetFlow Analyzer 12.4.084(Build 124084)

Features:

  1. DPI now supports UDP Protocol.

Enhancements:

  1. The following enhancements have been made in WLC Device and Routers/Switch in the forensics report.
    • Displaying timestamp for all conversations.
    • Detailed conversation report with timestamp for every grouped conversation.
  2. Option to view individual graphs has been introduced for Application, Source , Destination, DSCP, Next Hop in Forensics report.
  3. Option to view individual graphs has been introduced for Access points.
  4. Users can now configure no flows and link down time intervals from the GUI.
  5. Protocol Distribution Report has been revamped.
  6. Support Ticket ID : 5434910 - Introduced the option to view IN/Out data for AS View Conversation.
  7. Export Flow page has been enhanced with a new CLI based "Custom Export Flow" option and other device specific configuration options.
  8. Data rate units in speed configuration pages is now available in readable format.

Bug Fixes:

  1. Support Ticket ID 5438556 - sFlow traffic double count issue in Cisco Nexus93180YC-EX - 7.0(3)I7(1) device has been fixed.
  2. Earlier, the Protocol distribution report did not generate data for time periods lesser than 6 hours. This has now been fixed.
  3. WLC Search Report Pagination issue in MSSQL has been fixed.
  4. Search Filter in the Inventory is now case-insensitive.
  5. The headers in Client IP and Client MAC schedule reports for AccessPoint Group and SSID Group were interchanged. This issue has now been fixed.
  6. In some cases, the link down alert could not be enabled. This is fixed now.
  7. Support Ticket ID 5463432 - Unique color code for IN and OUT data has been introduced.
  8. Support Ticket ID 5528624 - BCP Error handling fix for Chinese version of MSSQL.
  9. Support Ticket 5525960 - The NBAR based widgets under NBAR Tab in Interface Snapshot page have been grouped and renamed as NBAR (Flow) | NBAR (SNMP).

NetFlow Analyzer 12.4.072(Build 124072)

Enhancements & Bug Fixes:

  1. Forensics Report can now be generated for Next Hop IP Address based traffic details.
  2. Introduced Exclude option for devices and WLC devices criteria in Forensics Report.
  3. Introduced option to the following Schedule following reports
    i. NBAR2 Application
    ii. Http host
    iii. Qos Stats
    iv. ART
  4. Forensics report can now be generated for Protocol,Source NAT, Destination NAT.
  5. NFA SQL injection(internal) has been fixed.

NetFlow Analyzer 12.4.068(Build 124068)

Bug Fixes:

  1. Support ID - 5494343, 5495086 : API request parameter type and value-related issues have been fixed.

NetFlow Analyzer 12.4.059(Build 124059)

Features, enhancements and bug fixes:

  1. Support ID - 5285783 : NFA now supports AireOS 8.2 WLC flow format.
  2. Support ID - 5389072 : NFA now supports option template for SSID information in WLC flow.
  3. The usability of Inventory snapshot pages has been enhanced.
  4. Option to view individual graphs has been provided under all WLC snapshots.
  5. Capacity Planning Report has been added for Interface Groups.
  6. A new trend-graph for QoS widget has been provided in the interface snapshot.
  7. Geo-Location option has been added for Device snapshot widgets.
  8. Graph granularity info has been included in the graph title for inventory snapshot widgets.
  9. Actian Vector 5.1 DataBase Engine has been upgrade to its latest version.
  10. Widget headers will be displayed as sub menu links when the tab has more than one widget.
  11. Messaging framework notification has been enhanced for snapshot sub-tabs, IP group snapshot, Interface group snapshot and Meraki devices.
  12. Users can now configure threshold-based alerts for access points and SSID groups.
  13. Login banner message is now pushed from the Central Server to every individual Collectors in the distributed setup.
  14. Support ID - 4775460 : Scheduled report now includes Interface group based Capacity planning report and Protocol distribution report.
  15. Support ID - 5264766 , 5171076 : Second level drill-down option has been provided in the Snapshot tab view.
  16. Support ID - 4583845 , 4527168 , 4980712 , 4432560 , 4764521 : Link Down and No-Flows alert time reduced to 5 mins from 15 mins.
  17. Support-Id : 5375916 : Schedule - IPGroup Inventory (Overall) Report -> Traffic data will now be displayed with 2 decimal places instead of 3.
  18. Support-Id : 5375916 : Schedule - IPGroup Inventory (Overall) Report - alignment issue has been fixed.
  19. Support ID - 5326239 : Traffic data crunching in the Billing Report has been fixed.
  20. The issue with DPI snapshots tab view had been fixed.
  21. PDF logo mismatch has been fixed.
  22. Earlier the Inventory back button was displayed in the in snapshot page header. This has been removed.
  23. Individual graph will not be available for Meraki Snapshot conversation widget when DNS is resolved.
  24. 'Show Application' option has been added for QoS widget in interface snapshot.
  25. Earlier, alerts were not generated when 'ALL' option was selected for Interface/Interface Group unless the the product was restarted. This issue has been fixed now.
  26. Earlier, there was an issue while creating alert profiles in the Distributed Edition when 'ALL' Sources option was selected. This has been fixed now.
  27. The issue where sensitive data was printed as plain text in log files has been fixed now for more security.
  28. The issue where sensitive data was printed as Community string in the log files has been fixed.
  29. SQL injection Vulnerability has been fixed.

NetFlow Analyzer 12.4.050(Build 124050)

Enhancements & Bug Fixes:

  1. Inventory Reports have been added to Schedule Report. User can now generate and schedule Inventory Reports for Interface, Interface Group, IP Group, Access  Point, AccessPoint Group, SSID Group.
  2. New flow export templates have been added to the Export Flow database.
  3. SQL Injection vulnerability that occurred while listing TopSites & WAAS Application has been fixed now.
  4. The possibility of injecting vulnerability, while deserialising untrusted data using ObjectInputStream has been fixed now.
  5. Each API request's parameter type and value will now be verified before processing across product, to avoid any vulnerabilities.

NetFlow Analyzer 12.4.043(Build 124043)

Enhancement:

  1. You can now edit, re-arrange and hide the default tabs in the horizontal menu. New custom tabs can also be added, edited, rearranged and deleted from the horizontal menu.

NetFlow Analyzer 12.4.038(Build 124038)

Features & Bug Fixes:

  1. Option to upgrade to Enterprise Edition from StandAlone Server, on a single click, has been introduced.
  2. IPAddresses will be resolved to DNS Names based on the 'Resolve DNS' setting for the Alert PDF report.
  3. BCP will be checked during every startup in OPMPlus for the NetFlow module.
  4. Help tips have been added in the NFA settings pages.
  5. NFA related alignment and usability issues have been fixed.
  6. Option to add SNMP credentials has been added in the Set SNMP page (device snapshot).
  7. NFA Widget will now be hidden in OPM when NFA license is not available.
  8. Unified colour support has been added to NFA Reports
  9. All interfaces / interface groups / IPGroups have been listed under the Dashboard widgets.
  10. Global page for configuring CBQoS for multiple devices has been provided under Settings.
  11. Global page for configuring NBAR for multiple devices has been provided under Settings.

NetFlow Analyzer 12.4.033(Build 124033)

Vulnerability Fix:

  1. General: HTML Injection vulnerability issue in Google maps has now been fixed.(CVE-2017-11560)

NetFlow Analyzer 12.4.031(Build 124031)

Bug Fixes:

  1. NCM module breakage in the NFA Enterprise edition has been fixed now.

NetFlow Analyzer 12.4.029(Build 124029)

Vulnerability Fixes:

  1. XSS vulnerability raised in APIs of NFA DashBoard, Reports and Settings Module has been fixed now.
  2. SQL Injection vulnerability in Compare reports has been fixed now. (CVE-2019-12196).
  3. SQL Injection vulnerability while listing applications in the Application Mapping tab has been fixed now.

NetFlow Analyzer 12.4.024(Build 124024)

Features & Bug Fixes:

  1. General : Previously, when HTTPS was enabled in the WebClient, some unexpected loading issues were observed. This has now been resolved by upgrading the Tomcat version used in the product.
  2. General : Scroll issue while listing custom dashboards has been fixed now.
  3. General : Shift key support has been added for device associations.
  4. General : The 'local privilege escalation' vulnerability has now been fixed.

NetFlow Analyzer 12.4.016(Build 124016)

Features & Bug Fixes:

  1. There was an issue in HighPerf Reporting Engine, where raw table split occurred frequently when more routers were added. This issue has been fixed.
  2. The issue where Security Settings was not visible in the Central Server, has been fixed.
  3. New flow export templates have been added to the Export Flow database.

NetFlow Analyzer 12.4.014(Build 124014)

Features:

  1. Total Volume consumption details have been added in Schedule Consolidated Report.

NetFlow Analyzer 12.4.000(Build 124000)

Vulnerability Fixes :

  1. JRE has been migrated to 1.8 and various vulnerabilities from JRE 1.7 have been eliminated. Highlights of JRE 1.8 migration:
    • General: Cipher algorithms AES-192 and AES-256 are supported in addition to AES-128 algorithm.
    • General: TLSv1.2 protocol is now supported by default.

NetFlow Analyzer 12.3.327(Build 123327)

Features & Bug Fixes:

  1. Custom time selection option has been added for multiple-device compare report.
  2. Previously, FlowRate in forensics was calculated for Bytes/sec. It can now be calculated for bits/sec.
  3. Geo Location has been updated with the latest details.
  4. NetFlow database has been updated with the latest Application names.
  5. Each API request's parameter type and value in the settings module will now be verified before processing, to avoid any vulnerabilities.
  6. NFA now supports user defined data units.
  7. Binary / Decimal notation for data units has been introduced.
  8. 0.0.0.0 invalid IP address validation has been added to Applications Names creation.
  9. The issue with scheduling Compare Reports for custom time period has now been fixed.
  10. Dashboard graph issue has been fixed.
  11. XSS vulnerability in the Attacks settings page has been fixed now.

NetFlow Analyzer 12.3.324(Build 123324)

Bug Fixes:

  1. Previously, negative sFlow graphs were generated when the sample pool was not in sequence, and when multiple devices had the same agent address. This has now been fixed.
  2. The issue where NAT information was missing in forensics reports for ASA Flow has been fixed now.

NetFlow Analyzer 12.3.323(Build 123323)

Features & Vulnerability Fixes:

  1. XSS vulnerability in older version NFA 7.0 has been fixed now. (CVE-2019-8925, CVE-2019-8926, CVE-2019-8927, CVE-2019-8928, CVE-2019-8929)
  2. XSS vulnerability in input text boxes in the Reports and Settings page, have been fixed now. (CVE-2019-7422, CVE-2019-7423, CVE-2019-7424, CVE-2019-7425, CVE-2019-7426, CVE-2019-7427)
  3. General: In AD authentication, you can now configure scope to be auto-assigned to users logging-in for the first time, when auto-login is enabled.

NetFlow Analyzer 12.3.312(Build 123312)

Features & Bug Fixes:

  1. The option to log SDP/ SDP-MSP tickets has now been added for LinkDown alerts.
  2. Previously, there was an issue with sflow negative graphs and no flows were generated when there were mismatches in the interface indexes. This has now been fixed.

NetFlow Analyzer 12.3.308(Build 123308)

Bug Fixes & Features:

  1. HighPerf installation error in the Japan language server has been fixed.
  2. Users can now configure tax or additional fees in Billing.
  3. Notification messages for product assistance have been included to help users. They can be enabled or disabled under general settings.

NetFlow Analyzer 12.3.304(Build 123304)

Bug Fixes :

  1. General: Previously, validation of session failed when the URL contained two or more consecutive backslashes. This vulnerability has been fixed now.

NetFlow Analyzer 12.3.294(Build 123294)

Features :

  1. Users can now generate search reports for Interface Groups & IP Groups.
  2. Nexus 7k IOS Series flow parsing issue has been fixed.
  3. NetFlow Analyzer now allows you to log SDP and SDP-MSP ticket for alerts.

NetFlow Analyzer 12.3.288(Build 123288)

Features & Bug Fixes :

  1. Introduced an option to view raw data storage information.
  2. Introduced multiple combinations of IP address for "From" and "To" in Between Sites IP Grouping bulk load.
  3. The bulk load feature in IP group and application mapping has been enhanced with options to download and upload sample .xml files.
  4. This issue with wrong Maximum value displayed in the Compare Report Graph Table has been fixed.
  5. The issue with schedule deletion, update and audit in Schedule Report has been fixed.

NetFlow Analyzer 12.3.277(Build 123277)

Vulnerability Fixes :

  1. The SQL injection vulnerability in 'getDeviceCompleteDetails' and 'getAssociatedCredentials' APIs have been fixed.

NetFlow Analyzer 12.3.274(Build 123274)

Features & Bug Fixes :

  1. Inventory updater feature that fetches device details on scheduled time, has been introduced.
  2. WLC widgets now support SSID Group resource type.
  3. Schedule reports have been added for Access Point Group and SSID Group.
  4. Autonomous System details have been updated.
  5. Added options to Create, Modify, and Delete SSID groups.
  6. In the Inventory, Snapshot reports have been added for SSID groups.
  7. SSID groups now support Capacity planning and Consolidated reports.
  8. An option to assign SSID Groups for Operator, and Guest users has been provided.
  9. The currency list for billing feature is updated.
  10. Introduced an option to select multiple combinations of IP address for "From" and "To" in Between Sites IP Grouping.
  11. Bulk load option to upload multiple unmapped applications is introduced in Application Mapping.
  12. General : During API calls, there was an 'APIKey' exposure vulnerability. This issue has been fixed now.
  13. General : There was an issue with the timezone displayed in the graph of an embedded NFA widget. This has now been fixed.
  14. General : SMS notifications via the SMS gateway was not working properly when the proxy settings were configured. This issue has now been fixed.
  15. General : Password length of Mail Server Settings and Proxy Server Settings have been increased.
  16. General : Quicklinks and info messages have been added to help the user with 'How-To' and 'FAQ' in the Notification Profile, User Management, Mail Server Settings, Proxy Settings and Rebranding pages.
  17. General : When a CCTV view was deleted from the CCTV list, the Dashboard kept loading for a long time. This issue has been fixed.
  18. General : In CCTV view, the seconds timer sometimes displayed a negative value. This issue has been fixed.
  19. General : In some cases, there was an out of memory (OOM) issue during product startup. This has now been fixed.
  20. General : SQL injection vulnerabilities in unauthenticated servlets has been fixed.
  21. General : Unauthenticated access to 'DataMigrationServlet' has been fixed. (Refer: CVE-2018-19403)
  22. General : The XSS vulnerability in alarm escalation has been fixed.

NetFlow Analyzer 12.3.240(Build 123240)

Vulnerability Fixes :

  1. The SQL injection vulnerability in 'getDeviceCompleteDetails' and 'getAssociatedCredentials' API's have been fixed.

NetFlow Analyzer 12.3.239(Build 123239)

Bug Fixes :

  1. General : There was an SQL injection vulnerability in the Alarms section. This issue has been fixed.
  2. General : In Alarms, there was an XSS vulnerability in the Notes column. This issue has been fixed.

NetFlow Analyzer 12.3.237(Build 123237)

Bug Fixes :

  1. General : XSS vulnerability issue in domain controller has been fixed.

NetFlow Analyzer 12.3.231(Build 123231)

Bug Fixes :

  1. General : Apache's 'commons-beanutils' jar has been updated to version 1.9.3 due to 'Remote Code Execution' vulnerability in an older version. (Refer: CVE-2018-19403)
  2. General : Unauthenticated access to 'DataMigrationServlet' has been fixed. (Refer: CVE-2018-19403)
  3. General : The 'Browser Cookie theft' vulnerability has been fixed.

NetFlow Analyzer 12.3.230(Build 123230)

Bug Fixes :

  1. The issue with NBAR application data in Wireless Controllers has been fixed.
  2. Missing I18N keys have been added for Chinese language.

NetFlow Analyzer 12.3.223(Build 123223)

Bug Fixes :

  1. In the Inventory Snapshot page, the pie chart had a legend status color mismatch. This issue has been fixed.
  2. The XSS vulnerability issue in updateWidget API has now been fixed.

NetFlow Analyzer 12.3.222(Build 123222)

Vulnerability Fixes :

  1. SQL injection vulnerability in Mail Server settings has been fixed.

NetFlow Analyzer 12.3.217(Build 123217)

Features :

  1. Export Flow option has been added for NetFlow, and Flows can now be exported from the GUI.
  2. How-To's and FAQ's have been added for Settings and Report pages.
  3. An option has been added to view the Menu tab horizontally with mouseover links.
  4. Added summary pages for Reports and Settings to list all menus in a single page.
  5. WLC widgets now support Access Point and Access Point groups resource types.
  6. The product web-client now supports Russian and Chinese(Taiwan) languages.
  7. TCP / UDP port unblock rules for NetFlow packets / Syslogs packets have now been added in Windows Firewall.

NetFlow Analyzer 12.3.206(Build 123206)

Bug Fixes :

  1. The issue with adding Cisco devices via SNMP V3 credential has been fixed.
  2. The issue while adding users in Japanese, or with special characters in IPGroup Name has been fixed.
  3. Tooltip information added in the Settings page.
  4. Search report with multiple criteria has been fixed.
  5. The issue with severity level (Attention, Trouble, Critical) mismatch in email alerts has been fixed.

Features :

  1. Default SNMP feature has been added.
  2. Provision to 'Test & Associate' an SNMP credential with multiple devices has been added.
  3. SNMP support for Huawei devices has been provided.
  4. NetFlow now supports Fortigate's NBAR2.
  5. Capacity planning and Consolidated reports have been added for access point groups.
  6. An option to assign Access Point Groups for Operator, and Guest users has been provided.
  7. In Interface snapshot, Auto Refresh has been added to Traffic widget.
  8. Monitoring feature has been added for MS SQL transaction log. Alerts will be displayed when log size is full.
  9. Monitoring feature has been added for MS SQL bulk load. Alerts will be displayed in case of BCP failure.
  10. Monitoring feature has been added for Vectorwise . Alerts will be displayed in case of connection failure.

NetFlow Analyzer 12.3.194(Build 123194)

Bug Fixes :

  1. NetFlow Analyzer now extends customization options to the login page. You can now choose to show/hide the copyrights and also change the background to an image of your choice.

NetFlow Analyzer 12.3.193(Build 123193)

Bug Fixes :

  1. Added options to Create, Modify, Delete access point groups.
  2. In Inventory, Snapshot reports have been added for access point groups.
  3. Tooltip information added in the Settings page.
  4. In the dashboard, Inventory list, Inventory snapshot, Heat maps and license pages, the Interface status color code mismatch has been fixed and the status names have been changed.
  5. The 95th percentile line has been added to the Traffic graphs in the Snapshot page, Reports and exported PDF.
  6. The issue with enabling polling for NBAR configuration, when the first interface is disabled, has been fixed.

NetFlow Analyzer 12.3.183(Build 123183)

Bug Fixes :

  1. New widgets for Top N Device by Speed (as table, line graph, pie chart), has been added.
  2. The issue with Interface Traffic Graph in Custom Schedule Report has been fixed.
  3. SQL injection vulnerabilities in java APIs has been fixed.
  4. In End User tab, user data was vulnerable to XSS. This issue has been fixed.

NetFlow Analyzer 12.3.179(Build 123179)

Features :

  1. Previously, the upgradation to build 123159 and above caused network interruptions in Windows 7 & 2008 R2. The issue is fixed now.

NetFlow Analyzer 12.3.169(Build 123169)

Features :

  1. Data encryption has been provided for attachments in 'Schedule Report Mail'.

Vulnerability Fixes :

  1. Under DNS Settings, the issue with Cross-site Scripting (XSS) on DNS Name has been fixed.
  2. Cross site scripting(XSS) and arbitrary file read vulnerability in Fail Over has been fixed. [CVE-2018-12997, CVE-2018-12998]

NetFlow Analyzer 12.3.163(Build 123163)

Bug Fixes :

  1. Option for IP group bulk-upload between sites is added.
  2. NetFlow supports Resovle DNS option in Report profile.
  3. NetFlow now provides detailed report for AS View.
  4. The issue with data mismatch for devices in Inventory and Map module has been fixed.
  5. The issue with the interface count mismatch has been fixed.

NetFlow Analyzer 12.3.159(Build 123159)

Features :

  1. NetFlow now supports remote PostgreSQL database.

NetFlow Analyzer 12.3.156(Build 123156)

Features :

  1. License Agreement has been updated.
  2. Promotions related to ITOM Events will be displayed in the UI header after login.

NetFlow Analyzer 12.3.151(Build 123151)

Bug Fixes:

  1. In Group Chat Module, "Operator" user was not restricted from viewing the list of users, their User ID and Email addresses. This issue has been fixed.
  2. EncryptPassword.bat has been removed due to DOS attack.
  3. Path Traversal vulnerability in uploadMib API has been fixed (Reported by Pulse Security).

NetFlow Analyzer 12.3.137(Build 123137)

Features :

  1. Distributed Edition for the latest version has been released.
  2. NetFlow Analyzer is now GDPR compliant with consent requests displayed across various modules in the UI.
  3. Under Privacy settings, Personally Identifiable Information(PII) search and update options have been added. (PII Search helps identify the PII Details given by the user across various modules. The PII data can also be updated as anonymous to maintain privacy)
  4. Audit logging has now been enabled to record all user activities.
  5. A step by step guide on how to use NetFlow Analyzer has been added.
  6. Resolve DNS handled for Conversation widget in Device snapshot.
  7. The issue with the wrong granularity values being displayed in Device snapshot page has been fixed.
  8. Search report and Global search report options have been combined together under Search Report.
  9. IN and OUT traffic for Search report can now be seen in a single view.
  10. Dashboards are now user-specific and allows users to create their own private dashboards. Apart from this, users with administrator privilege can associate dashboards that are created by them with select users.

NetFlow Analyzer 12.3.129(Build 123129)

Bug Fixes :

  1. Path Traversal vulnerability in upload Mib API has been fixed. 
  2. The RemodeCodeExecution(RCE) vulnerability occurring while testing scripts has been fixed.
  3. The SQL injection vulnerability in "FailOverHelperServlet" for the operation 'standbyprobestatus' has been fixed.
  4. The SQL injection vulnerability in "FailOverHelperServlet" for the operation 'getprobenetworkshare' has been fixed.
  5. In Group Chat Module, "Operator" user was not restricted from viewing the list of users, their User ID and Email addresses. This issue has been fixed.
  6. Previously, "Operator" user was not restricted from viewing the URL monitors in the Inventory Page. This issue has been fixed.
  7. Previously, "Operator" user was not restricted from being able to modify the background color and the tile color in the 3D floor view page. This issue has been fixed.

NetFlow Analyzer 12.3.125(Build 123125)

Bug Fixes :

  1. In Credential module, Stored Cross-site Scripting (XSS) vulnerability has been fixed (CVE-2018-10803).

Release Features

NetFlow Analyzer 12.3.107 (Build 123107)

Bug Fixes :

  1. 'Guest' user privilege has been added for NetFlow installation.
  2. The issue with the wrong bandwidth value appearing in the "Overview" tab in Interface/Interface Group/IP Group snapshot when custom time period is selected has now been fixed.
  3. Enhanced raw data dump to avoid increase in tmp/flow_log.txt file size.

NetFlow Analyzer 12.3.083 (Build 123083)

Bug Fixes :

  1. Dashboard loading has been revamped and optimized for better performance. 
  2. In the Login page, Iphone/Android and Ipad application download links have been included.
  3. License expiry information in header had a few alignment issues. This has now been fixed.
  4. User Icon with product details and about information has been moved to right top corner.
  5. In the Inventory page, product based tabs have been moved horizontally.
  6. Sign out option has been moved from Quick links to User details menu.
  7. Support icon has been added for (Mail, Apply license, phone number, SIF, User guide, Videos, Service pack, ThreadDump, DB Query & view Logs) links.
  8. In support page, the Query page under DB Query will be opened in a new window without ember.

NetFlow Analyzer 12.3.081 (Build 123081)

Bug Fixes :

  1. The issue related to export to PDF and mail has now been fixed and enhanced.
  2. Added an option to export to PDF and mail for Individual graph reports.
  3. Added an option to export to PDF and mail for DPI snapshot widgets and widget drill down reports in the inventory.
  4. Added an option to change the graph type for time series graphs in the inventory.
  5. Inventory page related bugs have been fixed.
  6. Added an option to select Business hours in the Last Quarter time period while scheduling reports
  7. SFlow flow format for multiple MPLS can be added now.
  8. Added an option to configure billing with base cost as zero.
  9. The loading issue in the Dashboard with NBAR App widget has now been

NetFlow Analyzer 12.3.070 (Build 123070)

Vulnerability Fixes :

  1. SQL injection vulnerabilities in Servlet's API has been fixed.

NetFlow Analyzer 12.3.62 (Build 123062)

Bug Fixes :

  1. Now supports Meraki's latest firmware upgrade.
  2. Removed product version number in the subject line of alert mail.
  3. Added an option to select number of records as "30" for consolidated report.
  4. Issue with showing the incorrect cost unit while editing billing profile has been fixed.
  5. Added the value for MIN and MAX traffic in AS View.
  6. Issue with generating CSV Report for WLC under Schedule Profile has been fixed.
  7. Issue with deleting WLC device from inventory page has been fixed now.
  8. Issue with listing interfaces in Qos drill down view has been fixed.
  9. Removed the Free Version from the installation shield.
  10. Issue with listing of interfaces in the Interface widget under Device snapshot has been fixed now and changed to a maximum of 10 interfaces.

NetFlow Analyzer 12.3.57 (Build 123057)

Vulnerability Fixes :

  1. DDI-VRT-2018-02 – Unauthenticated Blind SQL Injection via /servlets/RegisterAgent has been fixed.
  2. DDI-VRT-2018-03 – Unauthenticated Blind SQL Injection via /servlets/StatusUpdateServlet and /servlets/AgentActionServlet has been fixed.
  3. DDI-VRT-2018-04 – Multiple Unauthenticated Blind SQL Injections via /embedWidget has been fixed.
  4. DDI-VRT-2018-05 – Unauthenticated XML External Entity Injection via /SNMPDiscoveryURL has been fixed.
  5. DDI-VRT-2018-06 – Unauthenticated Blind SQL Injection via /unauthenticatedservlets/ELARequestHandler and /unauthenticatedservlets/NPMRequestHandler has been fixed.
  6. DDI-VRT-2018-07 – User Enumeration via /servlets/ConfServlet has been fixed.

NetFlow Analyzer 12.3.52 (Build 123052)

Bug Fixes :

  1. The possibility to fetch user details through ConfServlet has been fixed and is secured now.
  2. Schedule reports for report period as "Previous Week" shows data for current week. This issue has been fixed now.

NetFlow Analyzer 12.3.47 (Build 123047)

Bug Fixes :

  1. The framework for mail generation in NetFlow Analyzer has been revamped.
  2. The issue with licensing in attacks has been fixed.
  3. In Attacks module, time zone has been added in message for SMS alert.
  4. Language translation issue in Attacks snapshot has been fixed now.

NetFlow Analyzer 12.3.33 (Build 123033)

Bug Fixes :

  1. Added SNMP support for Wireless LAN Controllers to fetch names of Access Points.
  2. Client MAC based filter is added newly in Inventory and Snapshot under WLC.
  3. Widget for Client MAC traffic is added in snapshot view of Client IP.
  4. Overall Report for IP Groups is added in schedule reports.
  5. Edit option in Alert profile has been fixed.
  6. Unwanted vectorwise DB operation is removed to avoid loss of raw data.
  7. Attacks information is now can be viewed for selected device and interface.
  8. Issue in attacks search filter has been fixed.
  9. Option to select Ethernet card name is available in DPI settings.
  10. Promiscuous mode of ethernet cards has been enabled by default for DPI.

NetFlow Analyzer 12.3.29 (Build 123029)

Bug Fixes :

  1. Resource type and resource category are set by default to Top N Problems widget in dashboard.
  2. Default name will get changed based on the category for Top N problem widget in dashboard.
  3. The mismatch in Row Count for top source, destination, conversation, application ( L4,L7 ) has been fixed now.
  4. Redirection issue in Dashboard from network based (Source network, Destination network) widget has been fixed.
  5. A new column for DSCP has been added to top conversation widget in dashboard.
  6. Added an option to redirect from meraki device in device summary widget.
  7. Redirecting to particular snapshot with the configured timeframe is proper now and has been fixed.
  8. Redirecting to snapshot from WLC widgets is proper now and has been fixed.
  9. Enabling CBQoS policies for more than 2 interfaces has been fixed now.
  10. Listing interfaces with the index -1 has been fixed now.
  11. WAAS Total Volume graph plotting and time zone is proper now and has benn fixed.
  12. TimeZone issue for Line graph has been fixed now.
  13. Updating interface name when the speed is 0 is possible now.
  14. Individual Graph feature across product is proper now and has been fixed.
  15. Device traffic graph data in device Snapshot page showing incorrect value has been fixed now.
  16. Error in displaying time across product when user and browser timezone differs has been fixed.
  17. Drill down conversation in QoS shows only 50 records (pagination) has been fixed now.
  18. "Invalid Device selected" displayed in Raw Data Settings while clicking on Save button has been fixed now.
  19. Raw data was getting duplicated in the database. Now it has been fixed.

NetFlow Analyzer 12.3.14 (Build 123014)

Bug Fixes :

  1. The issue with export to CSV in inventory has been fixed and enhanced.
  2. Added an option to export to CSV for NetFlow Group Configurations. This option is added under "Group Settings".

NetFlow Analyzer 12.3.9 (Build 123009)

Bug Fixes :

  1. The issue with IPv4 address based criteria in Alert Profiles has been fixed for V9/IPFIX/SFlow flow format.
  2. The issue with Raw Data memory storage when toggle between raw ON and OFF for has been fixed for all databases i.e HighPerf, PGSQL and MS SQL.
  3. Interface group name was missing in the PDF generated through Schedule Reports. Now, this has been fixed.
  4. Application drill down & conversation reports from Inventory>>Interface has now mapped required Sr and Dst port for application mapping when data fetched from raw data. This issue with port and application mapping has been fixed.
  5. Now there is an option to send an SMS alert to multiple mobile numbers from "Alert Profiles" tab in Settings.

NetFlow Analyzer 12.3.2 (Build 123002)

Bug Fixes :

  1. Router display name was not updated while fetching from Router via SNMP has been fixed.
  2. Search Filter not working in NetFlow inventory has been fixed.

NetFlow Analyzer 12.3.0 (Build 123000)

Features :

  1. Deep Packet Inspection add-on captures and analyzes packets to monitor network and application response times for all critical applications and URLs accessed.
  2. Support for Cisco Meraki devices to monitor real-time network traffic and provide bandwidth usage reports by applications, APs, users and protocols.
  3. Out-of-the-box support for sFlow monitoring on Huawei routers.

NetFlow Analyzer 12.2.1 (Build 12201)

Bug Fixes:

  1. The possibility to fetch user details through ConfServlet has been fixed and is secured now.

NetFlow Analyzer 12.2.0 (Build 12200)

Features:

  1. Improved user interface to make navigation easier and faster.
  2. Added "Report profiles" for NetFlow reports to add bulk filters and manage the most important reports at once location.
  3. Option to export to PDF for reports is available for more reports.
  4. Auto-refresh for zoomed traffic graphs gives all the graphs respective to selective time interval.
  5. Improved SNMP v3 support is provided.
  6. New tree view for CBQoS policies gives policy hierarchy in tree structure for better classification.
  7. Option to export PDF is also available from device snapshot page for faster reporting.
  8. Telnet/SSH access to devices is now made available from web UI itself.
  9. Complete support for Wireless LAN controller is provided.
  10. Cisco IP SLA monitors is improved in this version.
  11. Night mode CCTV view brings low contrast screens to monitor critical items that needs constant monitoring.
  12. One click schedule option is available from snapshot page.
  13. One click flow export makes exporting flows simpler.
  14. SSID based reporting is made available for WLC monitoring.
  15. Added AD integration for user management.

NetFlow Analyzer 12.0.0 (Build 12000)

Features:

  1. New easy-to-use web client: NetFlow Analyzer 12 has made navigation between tabs even more easier with greater visibility and control over network data and thus, makes it more reliable and user friendly.
  2. Tight integration with network management solution: This enhancement has brought bigger benefits by managing your entire network infrastructure with single exe for all the available softwares by availing very tight integration with ManageEngine OpManager.
  3. Wireless LAN Controller monitoring: This feature is now available as add-on to take control of your wireless APs and LANs for better management of enterprise bandwidth.
  4. End User Bandwidth monitoring: Introducing this feature as BETA to monitor end-users bandwidth usage which has enhanced the way of troubleshooting excessive bandwidth usage better.
  5. Collaboration tool added: Group chat is now available at free of cost to interact within teams to resolve/assign the issues in more simplified way. Alerts can be discussed with the help of this tool.
  6. Newly added settings for Network Mapping: Now you can create visual view of network maps with the help of this setting and add network devices and priority links to get live status of your network links.

NetFlow Analyzer 11.0.0 (Build 11001)

Features:

  1. sFlow Parsing for IPV6 Flow Export : IPV6 Flow Export is supported now for sFlow for both NetFlow and ASAM addon.

Bug Fixes:

  1. Out Interface Value issue fixed for sFlow
  2. ASAM Land Attack for IPV6 Flows issue fixed

NetFlow Analyzer 11.0.0 (Build 11000)

Features

  1. Application-level traffic shaping capabilities: NetFlow Analyzer can now reconfigure its QoS policies with traffic shaping techniques, to ensure critical business apps are served on priority. It allows to shape traffic via ACL or class-based policies(Service Policy) to gain control over the applications consuming unwanted bandwidth. Shaping bandwidth is also done at interface and router level.
  2. ACL configuration for CISCO IOS device: Access control list can be viewed at device, interface and Layer 4 apps page to filter IP packets based on source & destination address rule. If there is a match in one of the access list statements, the ACL either permits/deny the traffic.
  3. CBQoS configuration for CISCO IOS device: This feature allows to create new class with "match statement" and "match criteria" and apply policy to the created class from the web GUI itself. It also allows to delete or modify the existing policy. Service Policy can be viewed from Devices, Interface, Layer4 apps & Layer7 apps and QoS page along with Preview option.
  4. One click flow export: "Add devices" facility from the NetFlow Analyzer, lets users to discover routers and switches and configure them to export flows from the web console itself— in just a single click. This reduces the energy to export it manually from devices and saves time.
  5. Alert profile configuration for attacks: Now it is possible to create email and SMS notifications for DoS attacks. Add alert configuration from settings and generate alerts which satisfy defined criteria, thus notifying users about attacks in real time.
  6. QoS level configuration: DSCP value can be configured to classify the traffic and shape it to ensure high priority for business critical apps.

NetFlow Analyzer 10.2.5 (Build 10250)

Features

  1. Heat Maps: Heat maps in NetFlow Analyzer helps to visualize the health status of all the interfaces in a single page. It uses color codes to depict the severity of the monitored devices.
  2. QoS graphs: QoS graphs displays the real-time information of interface traffic in graphical format. This helps to get a better view of your interfaces and applications performance.
  3. API Client Enhancements:
    • Add & Edit options included in IP Groups, Interface Groups & Alert Profiles.
    • Add option included in DSCP & App Groups.
    • Option to Add, Edit & Delete User Management.
    • New segment named "Attacks" added inside Settings. It comprises of three settings,
      • ASAM Setting:- Start/ Stop the flow processing for Advanced Security Analytics Module.
      • Manage Config:- Enable/ disable the Problems, Resources and Algorithms involved in ASAM.
      • Threshold Setting:- Basic and advance settings to update the threshold values in ASAM.

Note: All the above mentioned features are available in Essential and Large Enterprise Editions. For Distributed Edition, this release is just includes the scalability enhancements that got released in 10.2.

NetFlow Analyzer 10.2 (Build 10201)

Features

  1. Manual raw data collection option for a Router
  2. Option to clean up aggregated data
  3. Exclude weekends for alert profile
  4. Performance enhancement and bug fixes
  5. API support

NetFlow Analyzer 10.2 (Build 10200)

Features

  1. 100K flows/second(with raw data storage) - Scalability increase
  2. New high-performance Fluidic UI powered by Ember js

NetFlow Analyzer 9.9.0 (Build 9900)

Features

  1. Cisco AVC monitoring reports
  2. NBAR2 support through AVC reports

NetFlow Analyzer 9.8.7 (Build 9870)

Features

  1. 'All Collectors' option on Central Server
  2. Across top stats ft. showing stats from across all the collectors in the Central Server dashboard
  3. Interfaces & Interface groups across collectors can be added as a dashboard widget
  4. 'Across Top Stats' - 18 new parameters have been added
  5. Viewing all devices in the Central Server in one single view along with the drill down options
  6. Create device groups from across collectors
  7. Consolidated utilization based reports for IP groups

NetFlow Analyzer 9.8.6 (Build 9862)

Features

  1. Flow rate graph - View in the UI

NetFlow Analyzer 9.8.6 (Build 9860)

Features

  1. Service Pack Release
  2. IPv6 support is extended to more reports

NetFlow Analyzer 9.8.5 (Build 9850)

Features

  1. Localization of reports based on time-zone
  2. New themes

NetFlow Analyzer 9.8 (Build 9800)

Features

  1. Introduction of HighPerf Reporting Engine
  2. NetFlow Configurator
  3. Support for IP SLA SNMP v3
  4. IPv6 support is extended to Historical data(aggregated data) reports, Application mapping, Top sites mapping, Schedule reports and Report profiles

NetFlow Analyzer 9.7 (Build 9700)

Features

  1. Support for IP SLA Video Operations
  2. Google maps visualization v3
  3. Interface groups support in Billing module

Bug Fixes

  1. Mail Authentication issues have been fixed
  2. Issues with incorrect speed graphs in the Dashboard have been fixed
  3. Cisco recommended QoS base line - PDF broken link has been fixed
  4. Service start-up issues in Windows 2008 have been fixed
  5. URL Related Security bug fixes

NetFlow Analyzer 9.6 (Build 9600)

Features

  1. Source Network and Destination Network based Anamoly detection in ASAM module
  2. Option to ignore events for all resources in ASAM module
  3. IPv6 support in ASAM
  4. Facility to shut down ASAM module from admin settings page
  5. Support for Multicast Reporting
  6. Alert clone copy
  7. IPGroup clone copy
  8. AS Report with Src/Dst port

Bug Fixes:

  1. Issues in Ams Expiry message has been message
  2. Issues in Auto login has been fixed
  3. index page sorting has been fixed
  4. MySQLl IPv6 issue has been fixed
  5. MS SQl and empty page issue in WAAS has been fixed
  6. Application mapping duplication has been fixed
  7. Individual graph fix in non-English environment

NetFlow Analyzer 9.5 (Build 9500)

Features:

  1. User interface has been re-vamped to suit Customer needs
  2. Support for Cisco's Medianet and Mediatrace technology
  3. Support for App-flow
  4. Create and Monitor IP groups using WAN RTT Monitor
  5. Edit Threshold Settings in WAN RTT monitor
  6. Generate on-demand bills in capacity planning reports.
  7. Option to schedule Capacity Planning reports and Medianet reports
  8. Customizable e-mail subject
  9. Performance tuning of product through user interface
  10. Option to Add, Modify, and Delete Top sites
  11. AS Number added in AS Report
  12. Option to Exclude week-end and Business Hour in capacity planing PDF and CSV
  13. Export reports in CSV format for Device and interface based Consolidated Report.
  14. Option to load DNS Names from CSV file
  15. View Top 20 interfaces in consolidated report view per page
  16. Option to Export reports in CSV format for IP Group consolidated report
  17. View IPSLA Collector name in GUI
  18. Global Search - Report Based sorting.
  19. New application names has been added

NetFlow Analyzer 9.1 (Build 9100)

Features:

The new features of Advanced Security Analytics Module are listed below:

  1. Anomaly detection based on Source IP and Destination IP
  2. Heuristics based event classification that includes Denial of Service Attack,Host Scan, Port Scan, Diagonal Scan and Grid Scan
  3. Enrichment of events with location details(Geographical and Topological) for Offender IPs and Target IPs
  4. Customized user interface for white listing problem specific Flows and Events(Ignore Events and Discard Flows)
  5. Customized User Interface that includes
    -- Enable/Disable specific Problem
    -- Enable/Disable specific Algorithm
    -- Enable/Disable Resources
  6. Algorithm Settings
    -- Customized Algorithm specific Threshold configuration
    -- Algorithm specific Offender/Target Field configuration
  7. Location(EventList report)
    -- Customized Topological configuration for Offender IPs and Target IPs
    -- Offender/Target Location Mode settings
  8. Security Posture dashboard - Problems & Time Lines
    - Listing all the Problems with the Events(with Pie Chart) and
    Resources(with Bar chart) for each Class
    - Multi-line graph of Time showing occurences of Events, Resources and Problems
  9. Offenders & Targets dashboard - Resources & Time Lines
    - Lists all the Resources along with the Events(Pie-Chart) and problems (with Bar chart) for each Algorithm Type
    - Multi-line graph of Time showing occurences of Events, Resources and Problems
  10. Problem Analysis dashboard
    - Lists all Resources along with the Events(with pie chart) for the specific Problem
    - Multi-line graph of Time showing occurences of Events and Resources
  11. Resource Analysis dashboard
    - Lists all problems along with the events(with pie chart) for the specific Resource
    - Multi-line graph of Time showing occurences of Events and Problems

Bug Fixes:

  1. Enhancements in WAAS Reporting to support all CM versions
  2. Issue related to parsing IPSLA Monitor OID has been fixed
  3. Handled Request time out error in QoS polling
  4. CBQoS temp table split fixed
  5. Handled AS Number field in a different position and not in usual position of V9 Flow
  6. Report profile - report display issue on non-english environment
  7. Bill plan config script error in French language
  8. License management script error in Spanish language fixed

NetFlow Analyzer 9.0 (Build 9000)

Features:

  1. Wide Area Application Services (WAAS)
  2. Support IPV6 Address Format
  3. Wan RTT
  4. Enhanced Capacity Planning Report
  5. Creating Alert Profile with IP Address as Criteria
  6. Report Filter Enhancements
  7. Option to map IP addresses to site names
  8. Scheduling Options for Compare Reports and Report Profiles
  9. Support for Radius server Authentication in MSSQL
  10. Enhancements to Consolidated Reports
  11. Network Snapshot Improved with Widget for Top N Alerts
  12. String Search Option for IP groups
  13. Custom Selection Option in Device Reports

Bug Fixes:

  1. Dashboard related issues have been fixed.
  2. Tomcat Vulnerability issues have been fixed
    a.Fix for Apache Tomcat SingleSignOn HTTP Cookie exposure Vulnerability (CVE-2008-0128)
    b.Hidden the webserver details (say Apache/Tomcat 5.0.28) and return a blank information for the sake of security.
    c.Fix for the multi-content-length vulnerability issue in Tomcat
    d.Fix for HTTP Cookie (jsessionid) Exposure Vulnerability
  3. Voip related issues have been fixed
  4. Temp raw table growing issue has been fixed
  5. Index page sorting has been fixed
  6. SNMP V3 related issue has been fixed

NetFlow Analyzer 8.6 (Build 8600)

Features:

  1. Capacity Planning Report
  2. Report Profiles
  3. Top Sites
  4. Selection box for list of application
  5. Compare report include 95th percetile
  6. Compare report should include 1,5,15 min reports
  7. Resolve NATED Addresses in ASA reports
  8. Resizeable columns
  9. Configures CBQoS automatically for first 20 routers
  10. Schedule Reports CSV option
  11. Geo location PDF and CSV
  12. Schedule Business hours for last month and week
  13. Standard Deviation calculation in Traffic Report
  14. Interface performance dashboard
  15. Add custom URL widget in Dashboard

Bug Fixes:

  1. The average for 5 / 15 Min Data point Average in traffic page has been fixed
  2. The junk characters in Non-english property file have been removed
  3. Sampling in Adtran Devices has been added
  4. Dashboard related issues have been fixed
  5. Consolidated Device based Report - (graph color related issue) fixed
  6. Schedule Report file names with "null" has been fixed
  7. IPSLA fix
  8. Billing "Alert" issue has been fixed
  9. User Defined DNS added for Schedule reports
  10. Geolocation - "unaccounted" removed
  11. Dashboard - Topstat - Last 15 Min Report - time period wrong

NetFlow Analyzer 8.5 (Build 8500)

Feature:

Advanced Security Analytics Module. More information.

Bug Fixes:

  1. The average for 5 / 15 Min Data point Average in traffic page has been fixed
  2. The junk characters in Non-english property file have been removed
  3. Sampling in Adtran Devices has been added
  4. Dashboard related issues have been fixed
  5. Consolidated Device based Report - (graph color related issue) fixed
  6. Schedule Report file names with "null" has been fixed
  7. IPSLA fix

NetFlow Analyzer 8.0 (Build 8000 ) includes the following:

Features:

  1. IPSLA (VoIP)
  2. SNMP V3 support
  3. Flexible NetFlow - NBAR integration
  4. V9 Sampling
  5. Cisco ASA
  6. CBQoS Child Policy and Match Statements reports
  7. PDF Option in CBQoS
  8. Geo Locations reports of IP Addresses
  9. Single Click Scheduling Option
  10. Network Layout using google maps and Google map widgets
  11. More Graphical Widgets and some new Widgets added in Dashboard
  12. Sampling rate accounted during the flow calculation
  13. Global search for IP Address link
  14. Operator specific Dashboard permissions
  15. Top N AS reports
  16. Last 15, 30 Min reports
  17. 1, 5, 15 Min averages in traffic report
  18. Consolidated report for a device
  19. Localization

Bug Fixes

  1. In the build 7501, any report in "Compare same device for different time period" cannot be displayed in Non-english installation. This has been resolved
  2. The issue in displaying problem on the sevirities of SNMP traps has been resolved
  3. MSSQL Table split process is fixed now.
  4. Issue in device group display has been fixed.
  5. Pdf issue fixed for: (1) Application Group (2)Source Network (3)Destination Network (4)Tos (5)Dscp Group

NetFlow Analyzer 7.5.0 (Build 7600) includes the following:

Feature

  1. Supports Microsoft SQL server 2000/2005

NetFlow Analyzer 7.5.0 (Build 7501) includes the following:

Features:

  1. Interfaces without an IP address and without NetFlow exporting capability can be monitored for QoS policies if those interfaces are CBQoS enabled.
  2. IP groups can be viewed in the network snapshot page.

Bug Fixes

  1. The interfaces were not listed in the traffic page if the router name had special characters. That's been fixed.
  2. A compatibility issue during patch installation has been fixed.
  3. The patch CAN be applied in linux OS, even if the file system name is too long.
  4. When having more than 100 IP groups, the IP groups page went blank. This has been fixed.
  5. All the localization issues resolved.

NetFlow Analyzer 7.5.0 (Build 7500) includes the following:

Major Features:

  1. Customizable dashboard
  2. Site to site traffic monitoring
  3. GRE application filter
  4. Email option for sending reports with single click.
  5. Policy enabled (CBQoS) routers need not export NetFlow for CBQoS monitoring
  6. DSCP names in alerts and IP groups
  7. Volume based billing
  8. Secondary DNS server lookup
  9. Raw data storage - Can be stored for as less as one hour
  10. Report based on nexthop values.
  11. Localization available in 8 languages.

Minor Features:

  1. Password strength is displayed
  2. "Compare reports" can also be exported as PDF now.
  3. UAE Dirhams added in billing.
  4. Option to modify interface groups.
  5. Users can switch off raw data reports and generate reports from aggregated data, in case of time constraints
  6. Look and feel changed
  7. Subminute visibility available

Bug Fixes:

  1. Issues related to sFlow fixed.
  2. Day light saving time brought into effect. Product will automatically sync to the day light saving time change.
  3. AS view related bug fixed
  4. CBQoS related issues fixed
  5. Automatic deletion of older raw data in non-English-OS issue fixed.
  6. Issue with the "scheduled custom report" fixed

NetFlow Analyzer 7.0.0 (Build 7002) includes the following:

Bug Fixes

  1. Issue related with "seeing data point only for the last ten minutes in the graphs" has been fixed.
  2. Inablility to start as a service in Linux has been fixed.
  3. Issue related to mysql crashing every 24 hours (typically at 2:00 am every day - while loading DNS entries) has been fixed.
  4. Issue related to mail receiving and mail attachment in scheduled reports has been fixed.
  5. NetFlow Analyzer temporary images stored in the OS tmp folder will be periodically cleaned up.

NetFlow Analyzer 7.0.0 (Build 7001) includes the following:

Major Features

  1. Usage based billing
  2. Localization supported
  3. Reporting on source network and destination network
  4. Look and feel changed

Minor Features

  1. Option to resolve DNS for single IP addresses.
  2. Quick view graph from the dashboard view for IP groups.

Bug Fixes

  1. Application mapping with IP addresses will be categorized in the order in which they were created.
  2. Ordering of interface list in the browsing of older scheduled reports.
  3. Average calculation bug in scheduled custom report has been fixed.

NetFlow Analyzer 7.0.0 (Build 7000) includes the following:

Major Features

  1. Reporting on Cisco CBQoS - Useful for monitoring class based pre and post policy traffic usage, class based drops and queuing.
  2. Authentication using radius server
  3. Ability to create IP groups with exclude IP address option
  4. Ability to add application mapping from the Show Ports page for enhanced usability
  5. DNS resolving enhancement of source and destination addresses
  6. Support for user configurable DNS names for IP addresses
  7. Different IN and OUT speed can be configured for interfaces
  8. Support for exporting reports to CSV
  9. Sorting on the Autonomous Systems view for easier tracking and for peering arrangement
  10. Option to exclude ESP_App on user defined interfaces - Ensures that traffic is not double counted in case of ESP tunnels.
  11. Option to suppress output interface accounting on user defined interfaces - Useful when working with WAN accelarators
  12. Option to suppress ACL(Access Control List) related drops (based on destination interface being null) on user defined interfaces
  13. Quick view traffic graph in Dashboard view for enhanced usability
  14. Graphs enhanced to one min granularity and also to real-time in Network Snapshot
  15. Ability to set snmp parameters globally for all routers
  16. Support for sorting of interfaces based on usage in Dashboard View
  17. User management enhanced to provide last login time and current login status for all users
  18. The LHS view can be re-arranged for convenience
  19. Support for configuring alerts on interface groups. Interface groups can be used for checking the router traffic by combining all the interfaces into a single group.
  20. User permission can be granted at a interface group level. This feature would enable providing permission at an interface level while creating a user
  21. Option to view older schedules reports from the UI

Minor Features

  1. Login page enhanced with a "keep me signed in" option
  2. Alerting can be disabled for non-business hours
  3. Ability to Backup.bat just the aggregated data
  4. Option to bulk-load IP groups from flat file
  5. Distribution graph for troubleshooting, custom reports and drill down reports
  6. Configurable deletion of older alerts

Bug Fixes

  1. Bug related to scheduled report attachment resolved
  2. Today report to have only values from 00:00 to current time

NetFlow Analyzer 6.1.0 (Build 6100) includes the following:

Major Features

  1. Network Snapshot View brought in
  2. Global Comparison Report feature added
  3. QoS reporting brought in
  4. Alerting for IP group added

Minor Features

  1. DSCP Group brought in
  2. Distribution Graph for Conversation added
  3. Support for mail in HTML format

Bug Fixes

  1. Issue in average calculation and monthly report drilldown to 1 min code addition fixed
  2. TCP FLAGS is not reported correctly - fixed
  3. Issues related to google map fixed

NetFlow Analyzer 6.0.0 (Build 6001) includes the following:

Major Features

  1. Real time reports with graphs updates immediately as the data is received
  2. Support for sFlow data capture and reporting
  3. Option to click and drag on the graph for easier drilldown
  4. IN and OUT traffic (in bytes and packets) for each interface maintained with 1 minute granularity for upto 1 year
  5. Performance improvement in IP group classification engine
  6. Integration with Google Maps for a better view of the network
  7. Ability to report on DSCP mapping
  8. Alerting feature enhanced to send an alert when link goes down or when no flows are received for 15 minutes
  9. Ability to group together applications into a single logical entity

Minor Features

  1. Exporting pages to PDF
  2. More options in the scheduled reports (Modify reports, speed / utilization, IP / DNS and option to zip or not zip the reports)
  3. Option to back up configuration data
  4. Source and Destination dissemination (to see how many unique destination that a source talked to and vice versa).
  5. Individual graph for each source, destination and application
  6. NBAR storage period extended to 1 year
  7. Option to disable an IP Group

Bug Fixes

  1. Bug related to random interfaces appearing with NetFlow V9 has been fixed
  2. Bug in alert mail classification has been fixed
  3. Ambiguity in Min and Max points with respect to the graph has been resolved

NetFlow Analyzer 5.0.0(Build 5505) included the following:

Major Features

  1. Full i18N compliant
  2. Localized setup in Chinese, Croatian, Dutch, French, German, Japanese, Spanish languages

Bug Fixes

  1. Exporting V9 flows will report large number of interfaces than the actual number. This issue has been fixed

NetFlow Analyzer 5.5.0 (Build 5502) includes the following:

Major Features

  1. Reporting on NBAR statistics
  2. Support for netflow V9
  3. Automatic Scheduling and emailing of reports
  4. Associating IP address in application mapping (in addition to the port and protocol available now)
  5. Ability to create interface group - ability to group interfaces together and monitor traffic
  6. Reporting on ToS and TCP_Flag
  7. Ability to listen on multiple UDP ports for incoming NetFlow datagram packets
  8. Option to retain raw data for upto 30 days.( earlier limit was 2 weeks)

Minor Features

  1. 95-th percentile added in traffic graph.
  2. Configurable from address for emails - both in alert emails and scheduled reports
  3. logZipUtil.bat to include .err file in mysql\data folder
  4. Back-Up DB will have the backup location as configurable and also have option to overwrite the old backup
  5. IP Groups list sorted by name
  6. Values for the first few minutes were not plotted in the last traffic graph. This issue has been fixed.
  7. Ability to enable/disable collection of AS information based on user's needs.

Bug Fixes

  1. Alert will not be generated for interfaces whose interface index is 0.
  2. Bug in NetFlowAnalyzer MIB for SNMP trap (Variables do not correspond to trap varbind order) has been fixed.
  3. When reports are scheduled and automatically emailed, the files and the folders have been appropriately named for easier identification.

NetFlow Analyzer 5.0 Beta (Build 5001) includes the following:

Major Features

  1. Threshold-based alerting - option to send e-mail notifications and SNMP traps based on alerts
  2. Increased granularity - option to configure maximum time period for retaining raw data (upto 2 weeks)
  3. Enhanced IP group management - option to modify IP groups and associate interfaces to IP groups
  4. Internationalization - option to support local languages (French, German, Spanish, Japanese, and Chinese are available out-of-the-box)

Minor Features

  1. Option to view IfName and If Alias values for an interface in addition to IfDesc value.
  2. Dashboard filters - option to set filters on interfaces displayed on the Dashboard, based on the percentage of incoming and outgoing traffic received.
  3. Enhanced Traffic Filter - option to view hour-based traffic data in daily and weekly traffic graphs.
  4. Support link - Separate link with several options to contact NetFlow Analyzer Technical Support in case of any problems

NetFlow Analyzer 4.0.2(Build 4020) included the following:

Major Features

  1. Support for NetFlow version 7
  2. Reporting based on AS information
  3. Localized setup in Chinese, and Japanese languages

Minor Features

  1. Reporting based on packet count
  2. Port range in mapping applications

Bug Fixes

  1. Fixed PDF loading issue in Acrobat Reader 6.0
  2. Fixed color bug in Dashboard percentage values
  3. Fixed bug in IP address range when incorrect values were entered

NetFlow Analyzer 4.0.1 (Build 4010) included the following:

Major Features

  1. Address Grouping - Create monitoring and reporting groups based on IP addresses or applications
  2. Custom reports across multiple interfaces and devices

Minor Features

  1. Criteria to define ports and port ranges in custom reports
  2. Database archiving - Utility that makes a backup of the database.
  3. Support file creation - Utility that zips the log files and database information to send to the NetFlow Analyzer Support Team.
  4. Traffic graphs made as non-stacked graphs, and shown as a combination of line and area graphs
  5. Interface Traffic graphs shown in one-minute intervals

Bug Fixes

  1. Both In and Out traffic of managed interfaces are maintained - Previously traffic was accounted for flows whose source interface was managed. Now traffic is accounted for flows whose source or destination interface is managed.
  2. Fixed mismatch in total number of interfaces marked as managed in DB and memory
  3. Fixed PDF loading bug - Error when exporting to PDF when server was installed in non-"C" drive.
  4. Fixed Applications graph bug - graph was hidden when more than 100 applications were listed.
  5. runQuery.jsp file works fine on Linux platforms

NetFlow Analyzer 4.0.0 (Build 4002) included the following:

Bug Fixes

  1. Fixed threading issues in updating database while handling more than 250 interfaces
  2. Fixed issue in determining number of managed interfaces in License Management
  3. Fixed application port bug - minimum value of ports was assigned to an application. Now whichever source or destination port maps to the application is used. Apart from this, source and destination ports are now displayed for unknown applications.
  4. Fixed Delete Router bug - when all interfaces of a disabled router were deleted, new flows from any interface on that router were not processed. Now fixed to enable the router when all its interfaces are deleted. This ensures that if this router starts sending flows again, these incoming flows are processed.
  5. Fixed percentage utilization bug in traffic reports - value was exceeding 100% in some cases.
  6. Fixed Update Router Settings bug - device is now scanned again even if no changes have been made to Router Settings.
  7. SNMP requests to routers sent in batches to ensure better response

Minor Features

  1. NetFlow Analyzer can be run as a service on Linux
  2. Update Manager tool included - tool to apply, manage, and remove service packs and patches
  3. Option to edit Device Settings is available only for Administrator and Operator users
  4. Application Mapping list is sorted on Application name for easy access
  5. More enterprise applications added to the list of applications supported
  6. NetFlow Analyzer can be run as root/non-root user
  7. Server can be started in non-X-windows (headless) environment in Linux/Solaris

ManageEngine NetFlow Analyzer 4.0.0 (Build 4001) included the following:

Bug Fixes

  1. Fixed time zone-related bug causing problems in setting Start and End time in graphs
  2. About and Feedback links made to open in separate windows

NetFlow Analyzer 4.0.0 (Build 4000) General Release included the following:

General Features

  1. Support for NetFlow version 5 exports
  2. Web-based interface for viewing the network as well as performing administrative tasks
  3. Configurable applications and application ports
  4. Support for logical grouping of routers
  5. Three user levels with different privileges, to enable managing of groups

Graphs & Reports

  1. Instant graphs of network utilization per network interface
  2. Daily, weekly, and monthly reports showing current, average, and peak traffic patterns on an interface, as well as percentage utilization
  3. Reports on Top Applications, Top Sources & Destinations, and Top Conversations
  4. Resolvable source & destination addresses
  5. Reports include protocol & bandwidth utilization information
  6. Subnet-based and IP range-based reports
  7. Consolidated reports to show Top Application, Top Source, and Top Destination for an interface in one report

2.0 System Requirements

The specifications of your system depends on the number of routers sending NetFlow exports to NetFlow Analyzer, as well as how busy the actual router is. The minimum requirements for the system on which NetFlow Analyzer needs to be installed are given below.

Hardware Requirements

  • 2.4 GHz Quad Core Processor
  • 4 GB RAM
  • 200 GB disk space for the database

Supported Platforms

  • Windows Server 2019
  • Windows Server 2016
  • Windows Server 2012 R1 & R2
  • Windows 10
  • Windows 8
  • Windows 7
  • Windows Vista
  • Windows 2008 - R1 & R2
  • RedHat Linux 6.0 and above
  • Cent OS 6.0 and above
  • Fedora 18 and above
  • Debian version 6.0 and above
  • Ubuntu 12 and above
  • SUSE 10 and above

Supported Web Browsers

  • Internet Explorer 10.0 and above
  • Mozilla 30 and above
  • Google Chrome 35 and above

Click here to learn more about NetFlow Analyzer system requirements.

3.0 Installation and Setup

Detailed installation instructions are given in Installation and Setup section of the User Guide. Router setup information is also included in the same document. Specific sections include,

  • Installing NetFlow Analyzer
  • Starting and Shutting Down
  • Setting up Cisco Routers

4.0 Contact Information

Email:
Website: http://www.netflowanalyzer.com/
User Forums: https://pitstop.manageengine.com/portal/community/netflow-analyzer
Toll-free: +1 888 720 9500