Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Netflow Auditor for security forensics

November 2011 Products & Solutions, Infrastructure

The amount and diversity of traffic traversing modern networks creates complex challenges for network operators, security analysts and system administrators. Uncovering network performance and security issues before they become critical is essential. Often, serious attacks or compliance breaches only become evident too late even though they may have been occurring over an extended period.

One of the most useful methods for analysing network traffic is using NetFlow. Cisco developed NetFlow years ago and it has quickly become the industry standard for generating IP traffic information. Analysis of network traffic is becoming increasingly important, not just for determining utilisation root cause and forecasting bandwidth needs, but also for security analysis. With the introduction of NetFlow Auditor, NetFlow analysis has become useful in the intrusion detection field, through looking for abnormal traffic flows, in incident handling and forensics fields. Flow records can be exported from a diverse range of network equipment providing the opportunity for pervasive continuous monitoring and the ability to see what is happening on the network in real-time.

Analysis of flow records can be used to detect policy violations, to report on the network activities of compromised hosts and to detect some forms of scanning and denial-of-service attacks. In order to keep their networks running efficiently and securely, network operators need to build a deep understanding of traffic characteristics and the kinds of events taking place in their networks.

NetFlow Auditor software enables customers to fully automate the entire network anomaly detection and risk mitigation life cycle. NetFlow Auditor’s granular forensic ability, scalability and unique intelligent baselines deliver a complete and flexible toolkit for flow-based network behavior, forensics monitoring and analysis. It will alert on an event or condition in the network that is identified as a statistical abnormality when compared to typical traffic patterns gleaned from previously collected profiles and baselines.

For more information please contact Denan Erasmus, Barlow Communications, +27 (0)11 886 4730, [email protected]





Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Hytera supports communication upgrade for Joburg
News & Events Infrastructure Government and Parastatal (Industry)
By equipping Johannesburg’s metro police and emergency services with multimode radios which integrate TETRA and LTE networks, Hytera is bridging coverage gaps and improving response times across the city.

Read more...
Detect fires in the early stages
Securiton Products & Solutions Fire & Safety
The SecuriSmoke range from Securiton offers various levels of coverage and power to suit every budget and application. What all the models have in common is that they can detect smoke in very small quantities.

Read more...
SecuriHeat ADW linear heat detector
Securiton Products & Solutions Fire & Safety
The SecuriHeat ADW linear heat detector uses sealed tubes positioned over the detection area, and a remotely positioned control unit detects pressure changes in the tubes brought about by changing temperature.

Read more...
Fire safety in commercial kitchens
Technews Publishing Kestrel Distribution Products & Solutions Fire & Safety Commercial (Industry)
Fire safety in commercial kitchens is becoming increasingly critical. Defender is Europe’s first EN 17446:2021-approved kitchen hood fire suppression system and offers the indispensable safety measures required.

Read more...
Secure, modernise and optimise CCTV
Surveillance Products & Solutions
Industrial and commercial organisations are navigating complex digital transformation processes. With SecuVue, companies can bridge the gap between operational technology and information technology for safer, smarter operations.

Read more...
Protecting solar panel installations
Technoswitch Fire Detection & Suppression Products & Solutions Fire & Safety
Vulcan Integrated Solutions partnered with Technoswitch and installed Protectowire’s Confirmed Temperature Initiation (CTI) Series Linear Heat Detection (LHD) system, specifically designed for harsh environments, to offer fire protection for solar panels.

Read more...
IoT-driven smart data to stay ahead
IoT & Automation Infrastructure AI & Data Analytics
In a world where uncertainty is constant, the real competitive edge lies in foresight. Businesses that turn real-time data into proactive strategies will not just survive, they will lead.

Read more...
Water mist for optimal fire suppression
Fire & Instrument Services Fire & Safety Products & Solutions
Building owners, facility managers and other professionals are seeking fire suppression solutions that can meet the demands of modern buildings and facilities, including reduced water usage and environmental impact, while providing the necessary protection for assets and business operations.

Read more...
Hydrogen is green but dangerous
Fire & Safety Infrastructure Power Management
Hydrogen infrastructure is developing quickly, but it comes with safety challenges. Hydrogen is flammable, and its small molecular size means it can leak easily. Additionally, fires caused by hydrogen are nearly invisible, making them difficult to detect and respond to.

Read more...
Smoke 'em out
Fire & Safety Products & Solutions
The moment an intrusion is detected, Smoke Screen’s high-powered fog cannons activate, flooding the area with a dense, harmless fog that reduces visibility to near zero within seconds.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.