Abnormal Traffic Determination
The nLive technology platform is built with the purpose of determining abnormal traffic based on obtaining the 'normal behavior' of traffic in your network. Abnormal traffic is marked as such in traffic tables. One can also search for abnormal traffic using the search capability. The traffic graphs mark abnormal traffic in red color while the normal traffic is marked green, so it is very easy to spot abnormal traffic. There are specific reports for abnormal traffic by hosts, groups, applications, etc.
Abnormal traffic is determined as such in nLive by 'profiling' traffic in your specific network and creating a multi-dimensional baseline of normal traffic. Any traffic that stands out in a number of ways such as connection spreads, data transfer volume, ports, protocols, etc. is likely to be labelled as abnormal. However, the multi-dimensional algorithms in nLive technology are designed to minimize false alarms due to mis-judgment.
Example Solutions
The following are basic write ups on how to solve certain network problems using nLive. More detailed step by spet procedures are given towards teh end of the user manual, which is available in the Learning Center.Traffic visibility
Network Traffic VisualizationReal Time Traffic Analysis
Locating Network and Department Top Talkers
Network Applications and Ports
Network bandwidth Congestion
Traffic Reporting
Network Security IssuesNetwork Traffic Trend Analysis
Network Traffic Search and Forensic Analysis
Executive Reporting of Network Traffic
Regulatory compliance
Bandwidth Monitoring and Utilization
Locating Bandwidth AbusersApplication Bandwidth Usage
Wide Area Network Bandwidth
Local Area Network Bandwidth
Abnormal Traffic and Anomaly Detection
Abnormal Traffic DeterminationEmployee Misuse Detection
Locating Malware Infections
Network Fault Locating
Data Leak or Theft