Title :
Enhanced Netflow version 9 (e-Netflow v9) for network mediation: Structure, experiment and analysis
Author :
Rohmad, Mohd Saufy ; Azmat, Farok ; Manaf, Mazani ; Manan, Jamalul-lail Abdul
Author_Institution :
Cyberspace Security Lab., MIMOS Berhad, Kuala Lumpur
Abstract :
The Netflow version 9 is the latest Netflow version introduced by CISCO for the network monitoring and analysis purposes. Then come IPFIX that defined by IETF to overcome problem in Netflow version 9 and to enhance a few aspect of network flow capturing and filtering. It cooperated with PSAMP (packet sampling) standard for intelligent packet sampling for flow monitoring. This research paper will introduce enhanced Netflow version 9 (e-Netflow v9) that use nProbe GPL tool. The enhanced Netflow version 9 uses existing Netflow v9 parameters with RTP and SIP plug-ins. We will introduce the overall structure of this Netflow, the experiment to compare the results and performance and the finally analysis parts to study the reliability of this e-Netflow v9.
Keywords :
IP networks; computer network reliability; sampling methods; signalling protocols; telecommunication traffic; transport protocols; CISCO; IETF; IPFIX; RTP; SIP; enhanced Netflow version 9; intelligent packet sampling; nProbe GPL tool; network analysis; network mediation; network monitoring; network reliability; Computer security; Engines; Information analysis; Information security; Laboratories; Mediation; Monitoring; Protocols; Sampling methods; XML;
Conference_Titel :
Information Technology, 2008. ITSim 2008. International Symposium on
Conference_Location :
Kuala Lumpur
Print_ISBN :
978-1-4244-2327-9
Electronic_ISBN :
978-1-4244-2328-6
DOI :
10.1109/ITSIM.2008.4632080
