First of all, I’d like to explain in simple terms what Elastiflow is all about. ElastiFlow is a NetFlow analyzer that works with the Elastic Stack. The Elastiflow Analyzer can collect various network flows, such as netflow or sflow, and write them to Elastic, taking into account the ECS format. In addition, the Elastiflow Analyzer…
Read MoreKeeping historical data around for analysis is extremely useful but often avoided due to the financial cost of archiving massive amounts of data. Retention periods are thus driven by financial realities rather than by the usefulness of extensive historical data. The Elastic Stack data rollup features provide a means to summarize and store historical data…
Read MoreSome time ago I was able to use the machine learning functionality in Elastic for the first time. I was astonished at how easy it is to use, and how fast it calculates historical data. In my particular case, I loaded Netflow data into the Elastic database. I wanted to use this data to evaluate…
Read MoreOn NetEye we are using NfSen for the collection, analysis and view of NetFlow data. Unfortunately, many users complain, that the NfSen tool is not that simple to use, especially in terms of fast data analysis and for the reporting of the analysis results to their responsibles.
Read MoreWith the idea to get out more from the netflow data fetched by Nfdump and with special needs of our customers, we added some new and useful functionalities to make Nfdump even more interesting and useful for your network traffic analysis. First of all, Nfdump is a collection of tools to collect and process netflow…
Read MoreMit der letzten Version des NetEye Reportings (2.1), welches mit NetEye 3.5 zur Verfügung steht, haben wir zwei neue, sehr interessante Features in Bezug auf die Analyse von NetFlow Statistiken implementiert. Für all jene, die mit NetFlow nicht so vertraut sind: NetFlow ist eine Technik, welche es Ihnen erlaubt IP-Datenströme auf Ihrer nBox zu erfassen….
Read MoreWith the version 2.1 of our NetEye Reporting tool comming with NetEye 3.5 we introduced two new and very interesting features regarding the analysis of NetFlow statistics of your network. First of all, for those who are not very familiar with NetFlow, it is a functionality which allows you to capture IP network traffic of…
Read Morentop is a web-based traffic analyzer that can also be used as sflow/netflow collector. It is designed to show all the traffic sorted per host/protocol/interface. This apparently makes it similar to a netflow collector such as the one integrated into NetEye. In practice the there are important differences that make NetEye a more flexible collector:…
Read More