Revision as of 15:22, 26 January 2024 edit Kku (talk \| contribs) Extended confirmed users 122,082 edits m link traffic analysis ← Previous edit		Revision as of 19:23, 28 June 2024 edit undo 180.243.148.124 (talk) No edit summary Tags: Visual edit Mobile edit Mobile web edit Next edit →
Line 1: {{Short description\|Communications protocol}} '''NetFlow''' is a feature that was introduced on [[Cisco]] routers around 1996 that provides the ability to collect IP network traffic as it enters or exits an interface. By analyzing the data provided by NetFlow, a network administrator can determine things such as the source and destination of traffic, class of service, and the causes of congestion. A typical flow monitoring setup (using NetFlow) consists of three main components:<ref name="Flow_Monitoring_Tutorial">{{cite journal▼ ~~[[File:NetFlow Architecture 2012.png\|thumb\|right\|512px\|NetFlow architecture]]~~ ▲'''NetFlow''' is a feature that was introduced on [[Cisco]] routers around 1996 that provides the ability to collect IP network traffic as it enters or exits an interface. By analyzing the data provided by NetFlow, a network administrator can determine things such as the source and destination of traffic, class of service, and the causes of congestion. A typical flow monitoring setup (using NetFlow) consists of three main components:<ref name="Flow_Monitoring_Tutorial">{{cite journal \| last1 = Hofstede \| first1 = Rick \| last2 = Čeleda \| first2 = Pavel Line 26 ⟶ 25: * '''Flow exporter''': aggregates packets into flows and exports flow records towards one or more flow collectors. * '''Flow collector''': responsible for reception, storage and pre-processing of flow data received from a flow exporter. * '''Analysis application''': ~~analyzes~~ana lyzes received flow data in the context of intrusion detection or traffic profiling, for example. == Protocol description ==

NetFlow: Difference between revisions