Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

Project1: Identify tools/software that can monitor Network Traffic, which helps

ID: 3869774 • Letter: P

Question

Project1: Identify tools/software that can monitor Network Traffic, which helps detect cyber threats Description: doe You are required to work in a group of two. Te ams will be formed when project is given, and if it sn't work out with your team on this project outside of the class time. are m member you are responsible to work on the project individually. You should work Projects reports are expected to be 5 pages long. Don't stretch the report just to meet a particular page number, nor feel constrained if it needs to be longer to get your key points and results across. A good report must answer the standard questions about any research project. The following format is suggested and including the information I asked above: Project Deliverables o o . Abstract: WHAT did you do, WHY was it important, WHAT were your high level results? Problem Statement: WHAT is the problem you attempted to solve? Prior Work: HOW have others approached your problem? .Research Approach: WHAT was your approach to solving your problem? WHAT did you build? WHAT was your experimental methodology in terms of instrumentation, data collection, analysis, etc.? Include figures to describe your architecture and to assist in the presentation of your algorithms and analyses. Results: WHAT were your results? HOW did you evaluate your work and WHAT were your figures of merit? Include graphs, charts, or other ways to visually describe your results Lessons Learned and Future Work: If you knew then what you know now, WHAT would you do differently? WHAT questions are left for future research? Summary and Conclusions: Summarize your project and place your results in an overall context. .

Explanation / Answer

Network Security Monitoring Software

Abstract

Network monitoring is very important for healthy maintenance of a data centre. Network security usually involves detecting of powerful attackers to provide safety against traditional attacks. The vigorous cyber security methodologies will eventually integrate security with network monitoring. This includes analysis and collection of data for helping one to detect as well as respond to threats. In past, an unreliable network just meant an email delay or something which is of no importance but today the same unreliable network will bring a company’s business to standstill.

In this paper, I have analysed an important network security monitoring system called “Netfort LANGuardian”, that uses wired data for ensuring continuous monitoring visibility. This software can easily be deployed on virtual as well as physical platforms. Netfort LANGuardian makes use of wired data network packets as source data which minimizes the overhead of installing client software and agents.

Problem Statement

Netfort LANGuardian focusses on building security intelligence for protecting the user’s data and network by making use of network security monitoring and traffic control systems. It makes use of visibility into major aspects and drill down approach into action details that hold the key to fast response and enhanced intrusion detection.

The greatest benefit of this technology is that a non-technical user can easily drill down using NetFort LANGuardian’s dashboard with simple mouse clicks. This software makes use of DPI (Deep packet inspection) method for transforming networking traffic into operational intelligence and formatted data which can easily be stored, indexed, interpreted and searched.

With increased network security threats of today, it is crucial for implementing a better security monitoring system as security teams and network cannot have visibility to all major activities across the network.

Prior Work

The first attempt to network security and monitoring began with introduction of SNMP (Simple Network Management Protocol) in 1998 by RFCs 1065,66 and 67. The initial version of SNMP was replaced by SNMPv2, SNMPv3. These two had been most widely adopted in many platforms. SNMP mainly associates networking and thus operating systems were included for responding to SNMP command. SNMP began the major key to any network.

The next came NetFlow by Cisco to understand the behaviour of the networks. This was originally deployed in Cisco routers for analysing Internet Protocol traffic that enters or exits a particular interface. sFlow then followed by switch manufacturer which is basically a sampling tool.

The most recognised network vendors include Brocade, Arista, HP and many more are sFlow providers. Under RFC 3176 specification, you can find the complete description of sFlow.

Research Approach

Netfort LANGuardian is deployed in virtual and physical platforms. This uses wired network data packets as source and this minimizes overhead of installing client agents or software. This is thus a perfect all-in-one solution for network performance and security monitoring. Most specific use cases are:

Discontinuous visibility and waiting for data are never accepted in this modern networking environment. For protecting a network, both the security team as well as networking team must work hand-in-hand to lowest granular level.

LANGuardian is one of the best single window application which includes details on events, traffic, active server/application/endpoints and even the user activities. When you have a central data collection such like this, one can easily search, interpret and correlate data which ensures fast resolution and detection of network issues.

Result

Conclusion

LANGuardian is an application which includes analysis of application traffic by making use of tightly coupled key modules with advance intrusion detection mechanisms (intrusion detection system). This enables detecting and alerting for network threats at real time.

LANGuardian can perform data integration from IDS by making use of complete analysis of traffic and applications for providing uninterrupted network visibility. This software is a single panel of metadata which is crucial for numerous operational and security use cases in network monitoring and security. Thus LANGuardian provides enhanced troubleshooting and monitoring activities for your network.

Related Questions

Project l: Algorithm Design and Time Complexity Analysis for Operations on the D
Question #3745951
Project lifecycle: The reading for this week described how projects are selected
Question #413896
Project managemenf Question 3 You are planning a major management meeting cum co
Question #332610
Project management (PM) is the discipline of planning, organizing and managing r
Question #386403
Project management (PM) is the discipline of planning, organizing and managing r
Question #386406
Project management Question 4 The Singapore Project Management Conference is a m
Question #332611
Project management and Software testing Question Details a/ You are a project ma
Question #3635074
Project management is a discipline that is closely related to, if not completely
Question #355793

Navigate

Previous
Project1 VW type engine component analyzer Background: Here are some fun facts r
Next
Project1A.c #include #include int main() { pid_t pid1, pid2; pid1 = fork(); if (

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.