Next Previous
Previous

Previous

Next

 Next




PRODUCTS > Flowmon > Flowmon Collector
Flowmon Collector - Compatibility & Network Telemetry



Compatibility & Network Telemetry

 
Flowmon Collector is able to process flow data from a variety of different network devices - routers, switches, firewalls, packet brokers or dedicated Flowmon Probes. In this way, it maximizes prior investments into the network infrastructure.
Apart from data from Flowmon Probes as well as all the other supported formats the Collector supports IPFIX extensions and proprietary formats from other vendors as well:
Configuration of flow sources is simple - the Collector performs it automatically. For instance, when a router is configured to export flow data, the Collector recognizes it as a new source, contacts it using SNMP, retrieves information and configures the system accordingly.

Supported Environments

Flowmon Collector is delivered as a cloud application available in AWS, Azure and Google Cloud, as a virtual appliance for use in virtualized environments or as a hardware device with a wide range of configuration choices (flows per second, storage capacity, RAID type).
Cisco (AVC, HTTP)
Gigamon (HTTP, DNS, SSL, RADIUS)
IXIA (HTTP)
VMware NSX (rule ID, vmUUID, vncIndex)
OneAccess (HTTP)
VMware VDS
AWS FlowLogs

In-built Modules

 

In-built Probe

Flowmon Probe is an in-built functionality that analyses packets and extracts the most useful information from L2, L3-L4 and L7 layers even within encapsulated traffic.
 
It then generates IPFIX records, which are NetFlow enriched with additional data such as network performance metrics, hostnames, URLs, SSL/TLS encryption data and much more. This allows scaling network analytics across the entire IT environment while keeping a granular level of detail for troubleshooting and forensics. 

Extra standalone Probes can be added in large networks for complete coverage.

In-built Analytics - Monitoring Center

Flowmon’s Monitoring Center is the software natively installed on Collector. This powerful tool analyzes the collected data and provides well-arranged results within a smart interface. Learn more about the Monitoring Center.

Distributed Architecture

Flowmon can be easily scaled by adding Collectors as needed to cover very large networks distributed over multiple distant locations. The central node, called Master Unit, will serve as a main console and storage point, and data from all branches will be seamlessly integrated and presented within one dashboard for perfect visibility. All the configuration and updating of the entire architecture, as well as its individual nodes, is performed from the central Collector.
 

Data Storage

Data can be stored for months or even years, depending on what capacity the user chooses - from 0.5TB to 192TB per appliance. The Collector does not aggregate or sample data – it keeps it all available for as long as specified in disk quotas for auditing or post-compromise purposes. Data can also be exported to network storage and then restored whenever needed.
Unlike full packet capture, flow data does not contain the content of the communication, which results in a significant size reduction of up to 500:1 in the case of NetFlow and 250:1 in IPFIX, consuming a mere 0.2 % and 0.4 % of bandwidth respectively. In this way, a much longer history, reserving full packet analysis only for when it is really needed.
 

 

 

 

SecureOne is a partner centric technology distributor that specialize in secure IT networking solutions, services and support. Principals and resellers partnering with us for proven expertise, enablement resources and overall business execution. We are a preferred distribution partner for many of today's leading and emerging networking and security products including SOPHOS, Cyberoam, Kemp, Paessler, Acunetix, Parallels, IP-guard, Altaro, AISHU, SonicWall, Mushroom Network, Info Express & etc.


Copyright © SecureOne Distribution Sdn Bhd. All Rights Reserved