Today several folks here at the SolarWinds offices in Austin TX suggested that I write a blog post on the Conficker virus . This morning that seemed like a pretty good idea, but as the day went on and I started reading all of the great blog posts and articles (check out the ones by Network World and ZDNet ) out there that have been written about this already - there really didn't seem to be anything else to say and it's pretty late to do anything to affect April 1st, so I've decided to write about something else entirely. Last week we did a great webcast on network troubleshooting...

Read Entire Post »

IP based networks are more complex today than ever before. Not only are they now supporting voice, video, and data, but complications like dwindling IPv4 resources, sprinkles of IPv6, and constant changes in topology can make them seem almost unmanageable. Tactical networks have all of these complexities with the added pressures of needing to be deployed quickly, by a sometimes untrained and ever-changing staff, and with consequences of failure measured in more important things than lost packets… The good news is that there are some best practices that you can adopt when it...

Read Entire Post »

In case you haven’t seen it yet, the SolarWinds Engineer’s Toolset version 10.1 is now available and includes some pretty cool new stuff. One of the coolest pieces of technology that 10.1 added is the new and improved traffic generator, WAN Killer . I recently had a chance to chat with the Toolset engineering team about this new application and so I thought I’d post our discussion here. Josh – So Steve, I know that we’ve been chatting about a new and improved traffic generator for a while. What can you tell me about the new version of WAN Killer? Steve...

Read Entire Post »

Over the last few days I've been writing and talking a lot about NetFlow. This is a smokin' hot topic for network engineers nowadays and so we've created some new videos and webcasts to help explain the technology and how you can leverage it. One of the subjects that kept coming up is how to get NetFlow data from your Cisco ASAs. I had to do some research to verify my understanding of how this worked but now that I'm done I thought I should share it here. When most of us think about NetFlow, we think about traffic analysis. When you enable NetFlow on a router or switch...

Read Entire Post »

One of the most difficult aspects of analyzing network traffic is that so much of today's network traffic is web traffic riding on either port 80 (HTTP) or port 443 (HTTPS). When you analyze network traffic using a technology like NetFlow, sFlow, JFlow, or IPFix, the protocol tells you (among other things) the source and destination addresses, the protocol (TCP, UDP, etc), and the source and destination port numbers - but not the application. There are a few ways of getting around this. The latest version of the Orion NetFlow Traffic Analyzer (NTA) leverages one of these methods...

Read Entire Post »