BradReese.Com Cisco vs. ZTE Price Quote Comparisons

Home About Repair Power Supplies Refurbished Blog Quick Links Site Map Contact Us

 
Mike Patterson speaks out
Learn more about Mike Patterson...
Archive
  Help

Aironet

Power Supplies

VoIP Gateways

Cisco Repair

Refurbished Cisco

Cisco CPQRGs

New Cisco

New HP ProCurve

Cisco Tools

Competitive Lab Tests

Tech Forums

How-to Tutorials

CCIE Gossip

Blogroll

  
View the archive of Mike Patterson speaks out

Subscribe to Bloggers speak out on BradReese.Com

Cisco AVC reporting URLs with IPFIX

Cisco AVC IPFIX exports allow for much richer details when investigating potential cyber threats. Imagine having the ability to find out which URL an end user clicked on to get infected. Who else clicked on the same URL?

Sanford, ME:   Sun, 3/17/13 - 10:00pm    View comments

CiscoNetFlow KnightsCisco Application Visibility and Control (AVC) reporting provides details on URLs, latency, retransmits, etc. and get this: Cisco switched to IPFIX instead of NetFlow v9 to export the data! It's still a Flexible NetFlow configuration to setup AVC exports, but IPFIX is the transport.

We tested AVC using IOS version 15.2(4)M2 and found that we could export details on application name (similar to NBAR), server and client response time as well as total overall response time. There are counters for transactions, retransmissions, connections, responses, etc. I'm still learning about it. I also read that we can export details on WAAS such as dre, lz, optimization segment, connection mode, etc.

Perhaps one of the most exciting updates is the ability to export URLs using IPFIX, since this has been a long time coming:

Cisco AVC Reporting

Introducing URLs Exported with IPFIX

The above brings us to why Cisco AVC made the switch from NetFlow v9 to IPFIX, can you guess why?

First of all, IPFIX is the proposed standard for flow exports and Cisco probably wants to adhere to the standard. Also, IPFIX allows for the export of variable length strings which URLs certainly apply to.

Business Value of AVC

AVC is a combined architecture which contains several other next generation NetFlow exports: NBAR2, Performance Routing and Performance Agent. The intention is that AVC will provide a solution for discovering and controlling applications. Network admins can gain visibility into applications running in their networks and their performance and apply policy to improve application performance and control network resource usage. Basically, it means putting first things first. Business applications receive priority routing and bandwidth. AVC IPFIX exports are how we verify and confirm that the applications are running at peak performance.

Forensic Network Analysis

The contextual details offered up by AVC IPFIX exports allow for much richer details when investigating potential cyber threats. Imagine having the ability to find out which URL an end user clicked on to get infected. Who else clicked on the same URL?

Where to get AVC

AVC is available on the Cisco ASR 1000 Series Aggregation Services Routers and Cisco Integrated Service Routers Generation 2 (ISR G2). Take an Advanced NetFlow training class in a city near you to learn more about "What is Cisco AVC."

View the following informative Cisco Application Visibility and Control (AVC) video featuring Matt Bolick and the always entertaining Jimmy Ray Purser:
 

Related Documents:

Cisco AVC Customer Case Study

Cisco AVC FAQ

Cisco AVC At-A-Glance

Cisco AVC IPv6 At-A-Glance

Cisco AVC Supported Applications

Cisco AVC Solution Demonstration

View Cisco How-To Tutorials

Mike Patterson's other blog stories:

Dell solves complex business problems

Enterasys Secure Networks

Mike Patterson speaks out

Systrax High-Impact Network Monitoring

TMCnet Advanced NetFlow Traffic Analysis

Join the NetFlow Developments Group on LinkedIn
 

What's your take?

Subscribe to Bloggers speak out on BradReese.Com

Favorite Blog Story Picks

  1. Cisco CCIE Salaries - Dual CCIE 18532 Security/R&S George Morton
  2. President of Russia Vladimir Putin appears to square off against Cisco CEO John Chambers in Skolkovo Project
  3. Cisco letter admits culpability in ripping off State of West Virginia
  4. Cisco will take back routers it sold to ripoff State of West Virginia
  5. Auditor: Cisco sneakily used legally unauthorized purchasing process to outlandishly overprice 1,164 routers to take advantage of West Virginia
  6. Investors Beware: It Appears A Cisco Executive Went Unpunished For Leaking Financial Results - Seeking Alpha
  7. Cisco VP Lionel Chocron leaked Cisco's pending financial results to convicted insider trader
  8. Has Cisco's greed created a culture of cheating for its CCIE cert? - Anonymous
  9. ManageEngine NetFlow Analyzer vs. Scrutinizer from Plixer - Mike Patterson
  10. It's time to change the network - Dual CCIE 18532 Security/R&S George Morton
  11. SDN to SDDC - The Times They Are a-Changin' - Peter Phaal
  12. Will Cisco dump Tandberg?
  13. Cisco failure Ned Hooper is now mouseketeering with Centerview Capital
  14. Cisco CEO John Chambers ranked by Financial Times as #1 Chief Obfuscation Champion (COC)
  15. BradReese.Com has moved to Hummelstown, PA
  16. How will traffic visibility play a role in Software-Defined Networking (SDN)? - Mike Patterson
  17. Never Mind Your Suppliers.... Are YOU Ready for SDN? - Mark Leary
  18. Unconfirmed rumor: Belkin to purchase Cisco Linksys division
  19. Wisenheimers at Cisco? - Anonymous
  20. View the archive of Bloggers speak out on BradReese.Com
 
blog comments powered by Disqus

CCIE available Metro DC

Supplement Cisco SMARTnet Contracts

 

©2013 BradReese.Com - Home - About - Repair - Power Supplies - Refurbished - Blog - Quick Links - Site Map - Contact Us