The Flow Analyzer appliance uses industry-standard protocols to collect network flow data. While almost all manufacturers support Netflow v5, v9, and IPFIX there are some exceptions, and not all vendors support all available fields. We strive to accommodate hardware and software makers, and track closely to established standards and best practices.
The Flow Analyzer has been tested with flows from the following hardware and software vendors:
The following flow export protocols are supported:
Support for different exported fields varies from platform to platform, so consult your manufacturer's documentation to determine what data is available for your hardware / software. The following fields in flow exports are supported:
Note: The following Netflow v9 standard field numbers as defined by Cisco as "Vendor Proprietary" and are not supported: 43, 51, 65, 66, 67, 68, 69, 87.
Note: The Cisco ASA platform (depending on software version) may send non-standard fields that are not part of the Netflow v9 standard, and are not documented. Those fields are discarded by the Flow Analyzer.
The following Netflow protocols or features are NOT supported:
The collection of flows from multiple exporters located behind a single NAT IP address is not supported. The collection of flows from multiple exporters located behind multiple static NAT IP addresses is supported, because all flows do not appear to originate from one IP address. Netflow protocols do not provide a way to differentiate flows that are sent via NAT from the same IP address, hence the limitation.
Trademarked names referenced are the property of their respective owners.