Michael Patterson : Advanced NetFlow Traffic Analysis
Michael Patterson
Founder and Product manager for Plixer's Scrutinizer NetFlow and sFlow Analyzer as well as Flow Analytics.

Software Defined Networks Demystified: 5 Truths

For those trying to understand what a Software Defined Network (SDN) is, this post demystifies many of the benefits promised by SDN...

Full Story »

Logitech ConferenceCam CC3000e Video Conferencing for SMB Review

Logitech, a leader in USB-based computer peripherals is targeting their new Logitech ConferenceCam CC3000e towards the SMB, which cannot afford $50,000+ telepresence...

Full Story »

Magellan Echo is a Smartwatch Which Amplifies Fitness

When I first got my hands on the $150 Echo Smart Running Watch from Magellan, I was excited to put it through...

Full Story »

Barry O'Sullivan joins Altocloud to Boost Marketing & Call Center Integration

“Marketing is eating sales,” said Barry O’Sullivan the new CEO of Altocloud, a company dedicated to producing solutions which can be used...

Full Story »

Would You Hire That Way?

Lately, watching service providers (vendors, carriers, cloud providers - heretofore referred to as SPs) go to channel has been like watching...

Full Story »

MWC: Hypocrisy about NFV?

Two weeks ago, I wrote a blog about my initial thoughts on Mobile World Congress. Even today, I am still surprised...

Full Story »

Cisco AVC Reporting: Flexible NetFlow Configuration

The configuration below provides details on how to configure Cisco AVC Reporting / exports in IOS EX. For those of you new...

Full Story »

Software Defined Networks Demystified: 5 Truths

March 15, 2014

For those trying to understand what a Software Defined Network (SDN) is, this post demystifies many of the benefits promised by SDN adversaries.  To do this, I will draw out 5 areas that help you comprehend the truth about where it promises to deliver. First keep in mind that a SDN is broken into two parts: the Control and Data planes.



Cisco AVC Reporting: Flexible NetFlow Configuration

March 9, 2014

The configuration below provides details on how to configure Cisco AVC Reporting / exports in IOS EX. For those of you new to Cisco Application Visibility and Control (AVC) exports.  This configuration allows network administrators to use flow data to report on details such as URLs, latency, retransmits, packet size, TCP window size, jitter, packet loss, etc. Note also that Cisco is making the switch from NetFlow to IPFIX. Check it out:



Configuring Citrix AppFlow Support

February 3, 2014

We have included AppFlow support in our solution for years. This post tries to help with how to configure it so that you can take your AppFlow network traffic analysis to the next level.  

Note: AppFlow can be enabled only on nCore NetScaler appliances.





Palo Alto NetFlow Configuration

January 14, 2014

Today I’m covering the Palo Alto NetFlow Configuration steps.  This is a pretty straight forward two step process that is easy to complete and is supported on all Palo Alto firewalls except the PA-4000 series models.  



Been Hacked - What will you do?

December 12, 2013

Is your company a financial institution or a government agency that fears it may have been hacked?  How do you know and if you have been penetrated, what are the hackers doing?  What will you do about it?



Cisco AVC Webcast - Future Proof your Network

October 8, 2013

Last month I co-hosted a webcast with Liad Ofek, Technical Marketing Manager at Cisco on the topic of Application Visibility and Control (AVC). It was one of our most successful webcasts ever and it is now available to those who couldn’t make the event.



UserName with NetFlow or IPFIX

September 15, 2013

Ask any network administrator trying to track down the end user of a suspect traffic pattern, whether they would rather have the IP address or username and they will likely tell you ‘both’.  Several vendors are now including both in their NetFlow and IPFIX exports.



AKCP Reseller : AKCP Distributor

August 1, 2013

Setting up server room monitoring or any type of environmental monitoring may lead you to the largest AKCP Reseller or AKCP Distributor in the United States. The sensorProbe2 is the BitSight 2 from Ravica.com. They carry an entire line of environmental monitoring sensors for nearly every type of environmental condition.  Examples include temperature monitoring, humidity monitoring, smoke detection, airflow, fuel level sensors, water detection, etc.



Securing Remote Networks Against Cyber Threats: part 2

July 5, 2013

IP Host Reputation

Today, some NetFlow collector vendors are comparing IP addresses found in flows to reputation lists.  This host reputation look up process is a routine that goes out to an Internet based reputation list provider every hour and downloads an updated list of known hosts that end systems on the network should not be communicating with. Typically this is a list of compromised hosts that have a reputation for sending nefarious traffic (e.g. C&C). 

Read part 1 of this series.





Securing Remote Networks Against Cyber Threats: part 1

June 9, 2013

Managed Security Service Providers (MSSP) are depending on NetFlow and IPFIX as one of the top 3 enablers for improving network threat detection for onsite as well as remote sites.  The distributed NetFlow collection nature of this technology allows IT security teams to gain threat insight into remote areas without actually visiting each location. 

1 2 3 4 Next
Featured Events