Michael Patterson : Advanced NetFlow Traffic Analysis
Michael Patterson
Founder and Product manager for Plixer's Scrutinizer NetFlow and sFlow Analyzer as well as Flow Analytics.

Monitoring DNS Traffic for Security Threats

As you are probably aware, the Domain Name Server (DNS) plays an important role in how end users connect to the internet....

Full Story »

The One New Anti-Theft Idea Apple Needs

I left my iPad Air 2 and a case in the glove compartment of Hertz rental car. I am a loyal Hertz...

Full Story »

Bluecore: How to Reduce Shopping Cart Abandonment

Shopping cart abandonment is like an arch nemesis for many marketers. Yet, while cart abandonment can be detrimental to revenue, there are...

Full Story »

Monoprice USB-C Cable Line Provides Real Value

Recently I spent some time at Interop with executives from Monoprice, the company more well-known for inexpensive HDMI cables and audio equipment....

Full Story »

CloudGenix Gets Funded to Fuel SD-WANs

Kumar Ramachandran, Co-Founder and CEO of CloudGenix recently sat with me and explained his vision for software-defined enterprise WANS, which use off-the-shelf...

Full Story »

Texting and the Contact Center

I’ve periodically written about the changing contact center, from speech analytics to WebRTC, multiple times. Another interesting trend emerging is the...

Full Story »

QualiSystems Boosts Automation of NFV, DevOps and SDN

One of the more interesting vendors at Interop 2015 was Qualisystems as the company allows companies to automate many manual tasks...

Full Story »

Monitoring DNS Traffic for Security Threats

May 13, 2015

As you are probably aware, the Domain Name Server (DNS) plays an important role in how end users connect to the internet. In order to gain some background before reading this blog, you may want to read my post on An Overview of DNS. Once you have a bit more technical information on the DNS behaviors, I think you will find this post more informative.



Building an Incident Response Team: 4 Specialties

February 23, 2015

Are you tasked with building an Incident response team for your company or organization? Have you thought about what their responsibilities will be, how they will be engaged and who the key members will be?

How To Investigate Malware

December 2, 2014

If you are looking to learn about how to investigate malware, chances are you are already infected and under the gun to uncover the source and clean up the mess. Here are a few things to consider before you dig in.

Riverbed NetFlow Analyzer

August 12, 2014

Last year we had a customer contact us to help them invest in the ideal Riverbed NetFlow Analyzer. After receiving a good size packet capture, I spent some time with the other engineers developing a whole bunch of new reports.

NetFlow Calculator for Supermen!

June 4, 2014

When sizing a NetFlow or IPFIX collection appliance, many consumers go looking for a NetFlow calculator.  In order to do some calculations, you'll need to have some numbers handy. For example, what volume of flows per second can all of the hardware combined generate?  This is an important question because it will likely influence the type of collector your team invests in.

A software based collector should be able to scale to well over 40,000 flows per second which is over a couple million flows per minute.  A hardware based solution should scale to well over 100,000 flows per second.  If the solution can be distributed, collection rates well into the multi millions, should be attainable.  The problem that customers need to be aware of is that flow volume is not always directly related to bandwidth consumed.



Software Defined Networks Demystified: 5 Truths

March 15, 2014

For those trying to understand what a Software Defined Network (SDN) is, this post demystifies many of the benefits promised by SDN adversaries.  To do this, I will draw out 5 areas that help you comprehend the truth about where it promises to deliver. First keep in mind that a SDN is broken into two parts: the Control and Data planes.



Cisco AVC Reporting: Flexible NetFlow Configuration

March 9, 2014

The configuration below provides details on how to configure Cisco AVC Reporting / exports in IOS EX. For those of you new to Cisco Application Visibility and Control (AVC) exports.  This configuration allows network administrators to use flow data to report on details such as URLs, latency, retransmits, packet size, TCP window size, jitter, packet loss, etc. Note also that Cisco is making the switch from NetFlow to IPFIX. Check it out:



Configuring Citrix AppFlow Support

February 3, 2014

We have included AppFlow support in our solution for years. This post tries to help with how to configure it so that you can take your AppFlow network traffic analysis to the next level.  

Note: AppFlow can be enabled only on nCore NetScaler appliances.





Palo Alto NetFlow Configuration

January 14, 2014

Today I’m covering the Palo Alto NetFlow Configuration steps.  This is a pretty straight forward two step process that is easy to complete and is supported on all Palo Alto firewalls except the PA-4000 series models.  



Been Hacked - What will you do?

December 12, 2013

Is your company a financial institution or a government agency that fears it may have been hacked?  How do you know and if you have been penetrated, what are the hackers doing?  What will you do about it?



1 2 3 4 5 Next
Featured Events