New Training: Data Types for Security Monitoring
In this 7-video skill, CBT Nuggets trainer Keith Barker discusses the types and use of data provided by several technologies, including NetFlow, TCP dump, Firewalls, Syslog, and other network devices. Watch this new Cisco training.
Watch the full course: Cisco Certified CyberOps Associate
This training includes:
- 7 videos
- 1.1 hours of training
You’ll learn these topics in this skill:
- Intro to Data Types for Security Monitoring
- TCPdump Data
- NetFlow Data
- Data from Stateful Firewalls
- Data from Next-gen Firewalls
- IPS and IDS Data
- Data from Security Appliances
What is NetFlow?
NetFlow is a protocol developed by Cisco to analyze network traffic. By capturing this information, network professionals can determine points of origin for network traffic, its destination, the volume of network traffic, and the paths on a network it takes.
By using NetFlow, network administrators can monitor networks, plan and anticipate network growth, and perform security analysis on networks. By capturing network data and converting that data to flows, NetFlow offers network admins a visual way to understand how their network is operating.
IT professionals can access NetFlow data in two ways. They can use a command-line interface (CLI) to view network traffic as a means for troubleshooting issues. They can also export data to a NetFlow collector, which will process the data for more complex analysis. There are both hardware and software collectors.