Network Device Monitor for NetFlow Standard

Thanks For Downloading!

Review the documentation below and follow any custom installation steps. If no install steps are listed, most Splunk Apps and Add-ons can be installed as follows:

Windows: Decompress the downloaded file using a tool like 7-Zip and place the resulting folder into %PROGRAMFILES%\Splunk\etc\apps. Then restart Splunk using the splunk restart command or the GUI.

Unix/Linux: Decompress the downloaded file using a tool like tar -xvf and place the resulting folder into $SPLUNK_HOME/etc/apps. Then restart Splunk using the splunk restart command or the GUI.

Description

The Network Device Monitor App for Splunk provides real time visibility into your network devices.

This app allows you to view the number of bytes and packets by interface pairs by protocol passing through each NetFlow exporter during a selected time period. It also shows the average packet size per interface pair, where an unexpected drop in packet size (packet fragmentation) could be an indication of a problem on the network or an attack.

You need to have NetFlow Integrator Standard software to feed data into this app.
NetFlow Integrator translates NetFlow to syslog in in real-time. It can consolidate NetFlow records, reducing the volume by 1000 times or more, thus making it practical for indexing and correlation with other machine data in Splunk.

Download your Free 30 Day Trial of NetFlow Integrator Standard Today!

Features

Overview
- Top 10 Devices by Traffic (MB)
- Top 10 Devices by Packet Rate (packets / second)
Exporter Details
- Search by Exporter
- Top 10 Interface Pairs by Traffic
- Top 10 Interface Pairs by Packet Rate
- Top 10 Destination Ports by Traffic
- Top 10 Destination Ports by Packet Rate
Search by Destination Port
- Search by Exporter / Destination Port
- Destination Port Top 10 Interface Pairs (MB)
- Destination Port Top 10 Interface Pairs (packets / second)
Search by Interface Pair
- Search by Exporter / Input snmp / Output snmp
- Input snmp Output snmp Top 10 Destination ports (MB)
- Input snmp Output snmp Top 10 Destination ports (bytes / packets)
- Input snmp Output snmp Top 10 Destination ports (packets / second)
Average Packet Size
- Search by Exporter
- Average packet size per interface pair (bytes)

Requirements

NetFlow v5, v9
NetFlow Integrator Standard Edition
Splunk UDP Data Input 10514 Source type=flowintegrator

Versions and Release Notes

Version 2.0 (current version - updated Jan 28, 2013)

release notes:

GA Release Network Device Monitor App

posted 19 Mar '12, 23:13

NetFlow Logic
823●2●7
accept rate: 8%

new version 28 Jan, 14:42

One Review:

1 review, 1 rating, average 2.0

oldest newest

Reviews related to version 1.3.2 beta (current is 2.0)

Any feedback or comments about this app? I want to see if is useful to anyone

comments (0)

reviewed 18 Sep '12, 12:04

mavelar
11●1
accept rate: 0%

Your review

Did you find this app useful?

Preview toggle preview

Price:	Free
Author:	NetFlow Logic
Version:	2.0
Splunk compatibility:	5.x
Updated:	Jan 28, 2013
License:	Creative Commons BY 3.0
This app is not covered by any support agreements in place with Splunk. If you have questions about the installation or operation of this app, please contact the author.

Download App

Follow this app

Direct link:

Email:

RSS:

Reviews

Reviews + Comments

Related Apps

see all »