Palo Alto Networks: Monitor Network Access

https://i2.wp.com/harryallen.info/wp-content/uploads/2009/04/flow_1.jpgPalo Alto Networks next-generation firewalls have a NetFlow export that can enable IT organizations to monitor network access by easily identifying the type of traffic running on their networks.

Leveraging NetFlow exported from the Palo Alto Firewall, you can create custom reports to monitor network access that:

Identify Top Applications and Users on the network

Palo Alto does a deep packet analysis to identify actual applications such as Skype, BitTorrent, Webex and more. You can dynamically filter reports on specific UserID or application.

Palo Alto Networks: Application and User Reporting

Report on Host Network Address Translations (NAT)

Correlate public to private IP addresses to gain visibility into who the actual source/destination host is for the conversations going in and out of your network.

Palo Alto Networks: NAT Reporting

Dynamically Report and Filter on any conversation taking place on the network

Over 100 predefined report filters gives you easy access to the information that you are looking for in one or two mouse clicks.

You can easily:

  • Trend traffic patterns for any timeframe.
  • Troubleshoot “old” events
  • Know the Who, What, and Where, and HOW often
  • Create custom reports that work for you.

Proactively monitor traffic for suspicious behavior like DoS attacks, Port Scans, and Internet Threats.

Flow Analytics™ can trigger alarms for such behaviors as worms, network scanning, and known compromised internet hosts. It can alarm you if any DoS attacks are happening. Once alarms are generated, repeat offenders can be identified.

NetFlow also complements all of your packet analysis and SIEM tools to provide a powerful monitoring solution.

Using advanced NetFlow reporting capabilities, you can easily pinpoint traffic of interest, before using a packet-based data solution to perform a “deeper dive” to address performance-affecting issues.

So what have we learned?

NetFlow reporting from a Palo Alto Networks firewall provides:

  • Rich Application and User visibility.
  • Reporting on Enterprise Application usage and performance monitoring.
  • Network Behavior Analysis and alarming.
  • Network capacity usage, trending and planning.
  • Custom reporting to meet your needs.

Contact us Now For a free 30 day trial of Scrutinizer!

via Palo Alto Networks: Monitor Network Access – NetFlow & sFlow Network Monitoring – NetFlowKnights.com.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of the author. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided "as-is". The author shall not be liable for any damages whatsoever arising out of the content or use of this blog.
%d bloggers like this: