• 		Enterprise Infrastructure
  Data Centre Servers and Mainframes Storage and Storage Sub-Systems Operating Systems Systems Management Peripherals Virtualization

• 		Communications Infrastructure
  Network and Management Planning Performance Management and Monitoring Network Devices Unified messaging Carriers and Cellular Wireless LAN

• 		Information Architecture
  Service Oriented Architectures Messaging and Collaboration Databases Data Warehousing Identity Management

• 		Integrating IT
  Development Environments Tools and Languages Project Management Middleware / Utilities Outsourcing and Application Service Providers (ASP)

• 		Departmental and End User Computing
  Personal Systems and Peripherals Personal and Portable Devices Personal and Office Productivity Applications Small-Area Networking (SAN) Help Desk and End-User Support Mobile Applications Future Technology

• 		Enterprise Business Applications
  Enterprise Resource Planning (ERP) Business Intelligence and Data Mining Enterprise Portals Open Source and Linux Online Retailing and Ecommerce Customer Relationship Management (CRM) and Customer Self-Service Supply Chain Management (SCM)

• 		Security
  Security Products, Practices and Infrastructure Disaster Recovery / Business Continuity Hacking and Viruses Alerts, Patches and Fixes Privacy Issues

• 		Voice Data and IP
  Carriers and Service Providers Protocols and Standards Hardware, Software and Emerging Applications Regulatory Issues

• 		IT Workplace
  Human Resources Issues Hiring and Retention Careers and the Job Market Salaries and Benefits Education and Training Consulting and Contracting Knowledge Management Knowledge Worker Tools

• 		Leadership
  Issues for CIOs Budgeting / IT Alignment Value Management and ROI Human Capital Management Best Practices Industry News IT Executive Development

• 		E-Government
  Case Studies and Best Practices From Canada and Internationally Legal and Government Policy Issues Management Issues Privacy and Security

• 		The good the bad and the ugly
  The good The bad and the ugly Useful and fun tips

• 		Green IT
  E-Waste and Recycling Hardware lifecycle management Power and cooling Paper and printers Green thinking

• 		News Briefs
  Breaking News

• 		IT Women
  Training and development Profiles Opinions and commentary Global perspectives

• Blogs

• Salary Calculator

• IT Executive Development Series

• Video Library

• IT World Canada Technology News Daily ITwire Global Newswatch

• Slide Show Library

• White Papers

• Product Reviews

• Careers

• ITWorld Canada RSS Feeds

Making sense of network traffic

Advertisement

In the Star Trek: The Next Generation episodes, Capt. Picard would get a handle on a situation, turn to his Number 1, and say, “make it so.” At that point things would get in gear. Usually Picard was pressed due to poor visibility into alien behaviour.

It’s fun to watch on TV. Not so fun for network administrators.

Visibility can be clouded by poorly thought-out access. The data is then of limited use, even if there is a decent process for dealing with problems. Nothing gets done. Or, sometimes worse, the wrong thing gets done.

“The industry has an unbalanced approach to network management,” says Chris Bihary, director of sales for Network Critical Solutions in Buffalo.

“Millions of dollars are spent on enterprise network tools, various analyzers, sniffers, QoS gear, stuff for VoIP, and then on the security side there is content filtering, intrusion detection, the list goes on. But no-one asks: how will the device get access?”

The challenge isn’t to buy a specific tool, but to get complete network access. When looking at critical tasks, people tend to look at the core (data centre, database, server farms), the perimeter, or the edge.

From Network Critical’s perspective the solution is to take a temporary access port (TAP) and make it permanent. This way the out-of-band device has uninterrupted visibility into network traffic with no competition for access, and no affect on network flow.

However, whether access is from a TAP, appliance at the edge or perimeter, or application on a host server, the next issue is what to do with visibility.

Advertisement

“You have to set service quality definitions to assess things based on performance and behaviour, not just device availability and status,” says Jayanth Angle, research analyst for infrastructure at Info-Tech Research Group. “The engineers should know before the end-users.” Dean Pothorin, chief executive officer of PresiNET Systems in Victoria, sees the merit in appliances because data is not that accessible in logs.

“Networks are dynamic,” says Pothorin. “It’s timely and costly to run a sniffer when you’ve got a problem. An appliance can get to every single user, application, and destination.”

The value in this kind of visibility is that the information can travel from the user, to IT manager, and then to CIO or CEO. At this stage visibility should translate into policy development and enforcement.

But here lies one of the biggest challenges in making the visible actionable: the reporting has to translate into language understood by the network administrator and the CFO.

Loki Jorgenson, chief scientist for Apparent Networks in Vancouver, says part of the problem is that network and application people often don’t talk across the enterprise, and management rarely communicates with service providers.

“It’s a trick to generate a report and make it sensible to all,” Jorgenson says. “There has to be a balance of detail and a summary of information that directly explains the cause of the degradation.”

Apparent Networks’ approach is IP-centric. This is a software-based point-and-shoot technology. The application is generic to all IP networks and can sit virtually anywhere — at the edge, in the core, or parachuted remotely in the field.