Flow Analysis
Flow based analytics is a central aspect of the Trisul Network Analytics platform. Traffic metrics is another part.
A flow is a record of data transfer between two IP addresses. This is a crucial entity in both traffic and security monitoring. In IP Networks we know a flow as a conversation between source and destination IP, Ports and Protocols.
Using this section
Read this section in conjunction with the following other documents
Other flow related docs
📝 Trisul NetFlow Analyzer explains the flow based NetFlow analysis tools and concepts
📝 Trisul IPDR Massive flow storage and retrieval system intended for use in ISP Compliance scenario
📝 Tools Check out Explore Flows ,the chief flow exploration and query tool and Aggregate Flows which provides metrics based on flow analysis
Links
📄️ Flow concepts
Flow Analysis is a network monitoring technique that examines the flow of traffic between devices, networks, or applications. It involves collecting and analyzing metadata about network flows, such as:
📄️ Flow Taggers
Flow Taggers assign one or more text labels to flows in real time. Flow taggers help identify network flows based on predefined criteria i.e. these labels are created by rules you specify (example, IP addresses, ports, protocols). You can then search for flows
📄️ Real Time Stabber
You can view flows emanating from any IP or Port in real time using
📄️ Flow Trackers
A flow tracker is used to capture and save snapshots of top flows
📄️ Settings
This section describes options available to tweak flow handling.
📄️ Flow Legs and Duplication
Trisul Network Analytics continuously receives flow telemetry either
📄️ Common Tasks
Query flows