OmniPeek NetFlow Analyzer User’s Guide

Introduction

We know, you love the OmniPeek UI (we all do), and you would like to use it to analyze packet based traffic as well as NetFlow statistics from the various Cisco Routers that are spread all over the network. Well guess what? Now you can do just that with the WildPackets NetFlow Analyzer for the OmniPeek Console!

The WildPackets NetFlow Analyzer is a remote adapter plug-in for the OmniPeek Console that captures and analyzes NetFlow traffic in two ways. Like other NetFlow clients, it can listen and collect NetFlow data that is being sent directly to it. But because

OmniPeek is a packet analyzer, the NetFlow Analyzer can also passively capture NetFlow packets being sent to other clients and display the NetFlow statistics for these packets as well. In both cases, the NetFlow statistics can be displayed in the monitor windows as well as individual capture windows.

Installation

To install and configure the NetFlow Analyzer Adapter, first download it from MyPeek, and install it onto a computer that already has OmniPeek Enterprise installed on it. Yes, the NetFlow Analyzer only works with OmniPeek Enterprise, so if you were thinking about an upgrade from Basic or Pro, now is definitely the time.

Configuration as a collector

To configure the NetFlow Analyzer as a collector, run OmniPeek and select the Monitor Adapter. The Monitor can be enabled by selecting Monitor from the top level menu, and then selecting Monitor Options. In the Monitor Options Dialog, go to the Adapter tab, open the NetFlow Analyzer group, and double-click on New Remote Adapter. When the NetFlow Properties Dialog appears, enter the unique name of the new

adapter and the IP address of the router the NetFlow data will be coming from, as shown below:

To collect and aggregate NetFlow data from more than one router, leave the IP Address blank.

Once the new NetFlow Analyzer entry has been created, select it and hit OK. That's it, the NetFlow Analyzer will now be listening on port 9996 for incoming NetFlow packets. Ah, but what if your router is sending NetFlow data to another port? There are two ways to address this. One is to configure the router to send the NetFlow data to port 9996. The other way is to change the port that

Page 1
Image 1
Cisco Systems NetFlow Analyzer s manual Introduction, Installation, Configuration as a collector

NetFlow Analyzer s specifications

Cisco Systems NetFlow Analyzer is a powerful network traffic monitoring and analysis tool that provides organizations with deep insights into their network performance and traffic patterns. Built on Cisco's renowned NetFlow technology, the NetFlow Analyzer is designed to capture, analyze, and display real-time network data, enabling IT teams to make informed decisions to optimize their infrastructure.

One of the main features of Cisco's NetFlow Analyzer is its ability to monitor bandwidth utilization. Administrators can track which applications or users are consuming the most bandwidth, allowing for better resource allocation and management. This is crucial in a landscape where network demands are constantly evolving, and understanding bandwidth usage can help prevent bottlenecks and ensure smoother performance.

The tool employs advanced reporting capabilities, generating detailed reports on various network metrics, including traffic volume, peak usage times, and protocol distribution. These reports can be customized and scheduled for automated delivery, providing stakeholders with timely insights into network performance without manual intervention.

Cisco NetFlow Analyzer also benefits from its integration with various Cisco devices, leveraging proprietary technologies to enhance data collection and processing. This seamless integration allows users to gain a holistic view of their network, as it can correlate NetFlow data with other performance metrics from Cisco routers, switches, and firewalls, thus allowing for a comprehensive analysis of network health.

Another characteristic of the NetFlow Analyzer is its user-friendly interface, which presents complex data in an easily digestible format. Through dashboards and visualizations, IT staff can quickly identify trends and anomalies, making troubleshooting more efficient. The tool supports alerts and notifications, enabling proactive responses to potential issues before they escalate into critical problems.

Security is an essential aspect of today’s networks, and the NetFlow Analyzer aids in threat detection and mitigation. By monitoring network traffic patterns, it can help identify unusual activities that may indicate security breaches or malware infections.

In summary, Cisco Systems NetFlow Analyzer stands out as a robust solution for network traffic analysis, equipped with features such as bandwidth monitoring, advanced reporting, seamless integration with Cisco hardware, an intuitive user interface, and enhanced security capabilities. This comprehensive suite of tools empowers organizations to maintain optimal network performance, ensuring that their infrastructure can meet the demands of modern business operations.