• September 18, 2020, 12:12:31 PM
Welcome, Guest. Please login or register. Registration is free.
Did you miss your activation email?

Author Topic: Flow discovery tools  (Read 3460 times)

0 Members and 1 Guest are viewing this topic.

Offline Ziggy

  • Rookie
  • **
  • Posts: 15
Flow discovery tools
« on: November 14, 2013, 01:08:25 PM »
Greetings all,
We are in the design phase of a new security architecture within our LAN, this includes creating 3 zones of security within the framework, each zone seperated via firewalls/acls.  My question is in regards to discovering these flows with some level of detail, ie: protocol/ports.  Fortunately the current IP architecture maps these "zones" by subnet.  What I am seeking to achieve is a high level detail of the flows to begin testing and building out the ACLs.  I have a good map of the application ports but don't want to miss too many :).  Any insight or thoughts on this would be great, thanks folks!


Offline Dominik

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 1564
    • Networkautobahn
Re: Flow discovery tools
« Reply #1 on: November 14, 2013, 02:58:05 PM »
You can try out scrutinizer , wich is a flowanalyzer tool that is available in a trial version that can store the data for 24 hours wich should be enough for your task.

You can donwload it here:
http://www.plixer.com/Scrutinizer-Netflow-Sflow/scrutinizer-download.html

Good Luck
Itīs always the networks fault!
networkautobahn.com

Offline Flintstone

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 961
Re: Flow discovery tools
« Reply #2 on: November 17, 2013, 06:54:39 AM »
Solarwinds also do a free flow analyser but only holds an hours worth of flows.

CheerZ

Offline dekdek

  • Jr. Member
  • **
  • Posts: 45
Re: Flow discovery tools
« Reply #3 on: November 18, 2013, 08:30:18 AM »
nfdump + nfsen (http://nfsen.sourceforge.net/)
works with IPFIX
full free and full amazing tools !!

Offline Paul L

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 754
    • paulaleroux
    • Paul's Networking blog
Re: Flow discovery tools
« Reply #4 on: December 09, 2013, 03:13:45 PM »
if you have a budget I would look at Riverbed Cascade.

ACSS- Avaya Enterprise Routing Switch  #8