Michael Patterson : Advanced NetFlow Traffic Analysis
Michael Patterson
Founder and Product manager for Plixer's Scrutinizer NetFlow and sFlow Analyzer as well as Flow Analytics.

NetFlow Calculator for Supermen!

When sizing a NetFlow or IPFIX collection appliance, many consumers go looking for a NetFlow calculator.  In order to do some calculations,...

Full Story »

Wi-Fi, 3G/4G Roaming and Interworking Architectures

In a recent blog, I discussed Wi-Fi roaming and the wireless roaming intermediary exchange (WRIX), which is similar to an internetwork...

Full Story »

Wi-Fi, 3G/4G Roaming and Interworking Architectures

In a recent blog, I discussed Wi-Fi roaming and the wireless roaming intermediary exchange (WRIX), which is similar to an internetwork...

Full Story »

NTT Communications Becomes an NFV-Fueled Software Telco

In a press conference, NTT Communications unveiled today the first global NFV and SDN network. Touting the fact that CIOs and service...

Full Story »

New President and CEO at Microcorp

On the heels of yesterday's email about buying up master agency bases, Microcorp announced today that Brad Miehl, founder of MicroCorp,...

Full Story »

UneBobine, the most Versatile Smartphone Charger Around

In a sea of me-too accessories, the crowd-funded Une Bobine stands alone as a charging, syncing cable which also happens to...

Full Story »

OTT is / is not a threat to interconnect carriers

Two weeks ago, I traveled to Chicago to attend International Telecoms Week (ITW), the annual meeting for the wholesale telecommunications community....

Full Story »

NetFlow Calculator for Supermen!

June 4, 2014

When sizing a NetFlow or IPFIX collection appliance, many consumers go looking for a NetFlow calculator.  In order to do some calculations, you'll need to have some numbers handy. For example, what volume of flows per second can all of the hardware combined generate?  This is an important question because it will likely influence the type of collector your team invests in.

A software based collector should be able to scale to well over 40,000 flows per second which is over a couple million flows per minute.  A hardware based solution should scale to well over 100,000 flows per second.  If the solution can be distributed, collection rates well into the multi millions, should be attainable.  The problem that customers need to be aware of is that flow volume is not always directly related to bandwidth consumed.



Software Defined Networks Demystified: 5 Truths

March 15, 2014

For those trying to understand what a Software Defined Network (SDN) is, this post demystifies many of the benefits promised by SDN adversaries.  To do this, I will draw out 5 areas that help you comprehend the truth about where it promises to deliver. First keep in mind that a SDN is broken into two parts: the Control and Data planes.



Cisco AVC Reporting: Flexible NetFlow Configuration

March 9, 2014

The configuration below provides details on how to configure Cisco AVC Reporting / exports in IOS EX. For those of you new to Cisco Application Visibility and Control (AVC) exports.  This configuration allows network administrators to use flow data to report on details such as URLs, latency, retransmits, packet size, TCP window size, jitter, packet loss, etc. Note also that Cisco is making the switch from NetFlow to IPFIX. Check it out:



Configuring Citrix AppFlow Support

February 3, 2014

We have included AppFlow support in our solution for years. This post tries to help with how to configure it so that you can take your AppFlow network traffic analysis to the next level.  

Note: AppFlow can be enabled only on nCore NetScaler appliances.





Palo Alto NetFlow Configuration

January 14, 2014

Today I’m covering the Palo Alto NetFlow Configuration steps.  This is a pretty straight forward two step process that is easy to complete and is supported on all Palo Alto firewalls except the PA-4000 series models.  



Been Hacked - What will you do?

December 12, 2013

Is your company a financial institution or a government agency that fears it may have been hacked?  How do you know and if you have been penetrated, what are the hackers doing?  What will you do about it?



Cisco AVC Webcast - Future Proof your Network

October 8, 2013

Last month I co-hosted a webcast with Liad Ofek, Technical Marketing Manager at Cisco on the topic of Application Visibility and Control (AVC). It was one of our most successful webcasts ever and it is now available to those who couldn’t make the event.



UserName with NetFlow or IPFIX

September 15, 2013

Ask any network administrator trying to track down the end user of a suspect traffic pattern, whether they would rather have the IP address or username and they will likely tell you ‘both’.  Several vendors are now including both in their NetFlow and IPFIX exports.



AKCP Reseller : AKCP Distributor

August 1, 2013

Setting up server room monitoring or any type of environmental monitoring may lead you to the largest AKCP Reseller or AKCP Distributor in the United States. The sensorProbe2 is the BitSight 2 from Ravica.com. They carry an entire line of environmental monitoring sensors for nearly every type of environmental condition.  Examples include temperature monitoring, humidity monitoring, smoke detection, airflow, fuel level sensors, water detection, etc.



Securing Remote Networks Against Cyber Threats: part 2

July 5, 2013

IP Host Reputation

Today, some NetFlow collector vendors are comparing IP addresses found in flows to reputation lists.  This host reputation look up process is a routine that goes out to an Internet based reputation list provider every hour and downloads an updated list of known hosts that end systems on the network should not be communicating with. Typically this is a list of compromised hosts that have a reputation for sending nefarious traffic (e.g. C&C). 

Read part 1 of this series.





1 2 3 4 Next
Featured Events