Implemented

NetFlow Granular Alerts

NTA has come a long way ever since it moved away from the FastBit database to the MS Sql Database. Also, the Flow Navigator now permits us to configure alerts based on multiple flow conditions

pastedImage_0.png

We now have the ability to create filters to view specific flows but not really save the filter for future use.

It would be great to allow us to save such filters for further use - example create a Flow filter (not just based on NetFlow Source - Interface - Application but also include Endpoint - IP Address Group and so on.

Current capability:

pastedImage_1.png

Create a Flow Filter and subsequently an Alert based on Netflow Source : Node - Interface - Application (only)

pastedImage_2.png

It would be an essential requirement to allow addition of specific endpoints and make the flow Alert very specific.

In summary 2 asks :

  • Allow users to save filters
  • Allow creation of Alerts for even more parameters included in the Flow Navigator or maybe Alerts based on the filter created in Flow Navigator

abdhijasharmasagar.bgangadhar.kdefieguydevendrab99kushalrucha.v