NetFlow Optimizer receives flow data from your network devices, typically sent over UDP protocol. It is capable to receive public cloud flow logs, such as AWS VPC Flow logs, Azure NSG Flow logs, and Google Public Cloud VPC Flow logs. Pre-processed flow data is then from NFO to any system capable of receiving syslogs or JSON over UDP protocol, such as Splunk, Exabeam, Sumo Logic, Elastic stack (ELK), rsyslog or syslog-ng, VMware vRealize Log Insight, or any other SIEM system. These systems store flow information where it can be correlated with other machine data, visualized in dashboards, searched and used for creating alerts.

Copy link