![]() ![]() So capturing on one of these would be sufficient.Ī common practice is to deploy netflow on the ingress interfaces of all your 'access' routers. Obviously, capturing on all four of these points would also create 4x duplication of the traffic. The simple solution is to just pick one of these to monitor, but then what of the return traffic? Imagine a packet going from Host Y to Host X, that packet would also cross four possible (what I'll call) Netflow capture points: If you were capturing at every single one of these points, you would get the same flow data, duplicated four times. Take this simple example: Host X Router A Router B Host YĪ packet going from Host X to Host Y will cross four total interfaces: The decision of where and what direction to monitor becomes a bit more ionvolved when more Router's are involved. If you monitor both directions and both interfaces, you will be monitoring duplicated flows. Collection systems can be commercial or third party freeware products and optimized for specific NetFlow applications such as traffic or security analysis.When you only have one Router, then you are fine monitoring both directions or both interfaces. Users can specify the router and aggregation scheme and time interval desired. ![]() NetFlow collection systems allow users to complete real-time visualization or trending analysis of recorded and aggregated flow data. NetFlow reporting collection utilizes exported data from multiple routers and filters and aggregates the data according to customer policies, and then stores this summarized or aggregated data.Flexible flow data is now available using the latest NetFlow v.9 export data format. This gives the ability to focus, pinpoint and monitor specific information for the application. For instance, the user can track security and traffic analysis simultaneously in separate NetFlow caches. Flexible NetFlow has the ability to implement multiple flow caches or flow monitors for tracking different NetFlow applications simultaneously. Flow caching analyzes and collects IP data flows within a router or switch and prepares data for export.NetFlow includes two key components that perform the following capabilities: The challenge, however, is finding a scalable, manageable, and reliable solution to provide the necessary data to support these opportunities. Understanding behavior allows customers to implement new IP Services and applications with confidence. This presents business opportunities that help justify and optimize the vast investment involved in building a network, ranging from traffic engineering (to optimize traffic flow through the network) and understanding network detailed behavior. ![]() Monitoring IP traffic flows facilitates more accurate capacity planning and ensures that resources are used appropriately in support of organizational goals. By analyzing NetFlow data, a network engineer can identify the cause of congestion determine the class of service (CoS) for each user and application and identify the source and destination network for your traffic. The Challenge: The ability to characterize IP traffic and understand the origin, the traffic destination, the time of day, the application utilization is critical for network availability, performance and troubleshooting. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |