Upload File

flowvue - infopoint security...2 appliati te lowvu copyright © 2013 gigamon. all rights reserved....

  • Home
  • Documents
  • FlowVUE - Infopoint Security...2 APPLIATI TE lowVU Copyright © 2013 Gigamon. All rights reserved. Sample a Subset of Subscribers • Sample on GTP-u traffic where 10% of the subscribers
4
1 APPLICATION NOTE // FlowVUE Copyright © 2013 Gigamon. All rights reserved. 1 Gigamon’s FlowVUE application is a new subscriber-based IP sampling paradigm that helps carriers turn Big Data into manageable data. FlowVUE allows for active sampling of a subscriber’s device (known as a user endpoint IP or UE IP) across GTP-u tunnels. The integrity of the subscriber flows is preserved by forwarding all the flows associated with the sampled UE IP to the probes and analysis tools. FlowVUE In contrast, traditional methods randomly sample packets without any correlation to the flows which provides limited visibility into subscriber behavior and experience. FlowVUE is able to intelligently reduce the amount of traffic, while keeping the integrity of the data flows intact, but at a lower speed feed within a smaller pipe, understanding subscriber usage patterns. Flow-aware sampling is typically executed across GTP user plane sessions due to the high volume of data traffic generated by the subscriber devices. Intelligent sampling enabled by FlowVUE can be used for understanding usage patterns. This can be extremely useful in deriving pricing strategies. By leveraging the patented Flow Mapping ® technology, operators can also get visibility in to the subscribers QoE by forwarding all the GTP control sessions to the monitoring tools. In the example below, a group of subscriber devices are identified based on their UE IP and sampled to forward all the traffic related to a subset of these subscribers to one or more analytic tools.

Upload: others

Post on 28-Oct-2020

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: FlowVUE - Infopoint Security...2 APPLIATI TE lowVU Copyright © 2013 Gigamon. All rights reserved. Sample a Subset of Subscribers • Sample on GTP-u traffic where 10% of the subscribers

1

APPlicAtion notE // FlowVUE

Copyright © 2013 Gigamon. All rights reserved.

1

Gigamon’s FlowVUE™ application is a new subscriber-based IP sampling paradigm that helps carriers turn Big Data into manageable data. FlowVUE allows for active sampling of a subscriber’s device (known as a user endpoint IP or UE IP) across GTP-u tunnels. The integrity of the subscriber flows is preserved by forwarding all the flows associated with the sampled UE IP to the probes and analysis tools.

FlowVUE

In contrast, traditional methods randomly sample packets without any correlation to the flows which provides limited visibility into subscriber behavior and experience. FlowVUE is able to intelligently reduce the amount of traffic, while keeping the integrity of the data flows intact, but at a lower speed feed within a smaller pipe, understanding subscriber usage patterns.

Flow-aware sampling is typically executed across GTP user plane sessions due to the high volume of data traffic generated by the subscriber devices. Intelligent sampling enabled by FlowVUE can be used for understanding usage patterns. This can be extremely useful in deriving pricing strategies. By leveraging the patented Flow Mapping® technology, operators can also get visibility in to the subscribers QoE by forwarding all the GTP control sessions to the monitoring tools. In the example below, a group of subscriber devices are identified based on their UE IP and sampled to forward all the traffic related to a subset of these subscribers to one or more analytic tools.

Page 2: FlowVUE - Infopoint Security...2 APPLIATI TE lowVU Copyright © 2013 Gigamon. All rights reserved. Sample a Subset of Subscribers • Sample on GTP-u traffic where 10% of the subscribers

2

APPlicAtion notE // FlowVUE

Copyright © 2013 Gigamon. All rights reserved.

2

Sample a Subset of Subscribers • Sample on GTP-u traffic where 10% of the subscribers are forwarded

# Configure ports no traffic all noconfirmport 1/1/x3 type networkport 1/1/x4 type toolport 1/1/x1 type tool# configure gigasmart gsopsgsgroup alias gsg1 port-list 1/1/e1 gsop alias gsfvue flow-ops flow-sampling port-list gsg1 gsparams gsgroup gsg1 flow-sampling-device-ip-ranges add ip4addr 1.1.1.0 255.255.255.0 gsparams gsgroup gsg1 flow-sampling-rate 10# forward GTP-u traffic to 2’nd level mapmap alias to_tool use gsop gsfvue to 1/1/x1 from 1/1/x3# forward GTP-u traffic to vp1rule add pass portsrc 2152exit

Sample a Subset of Subscribers and Send a Subset of Traffic Related to the Sampled Set of Subscribers to the Monitoring Tools • Sample on GTP-u traffic where 10% of the subscribers are forwarded • Further reduce the traffic by filtering and forwarding HTTP traffic

# Configure ports no traffic all noconfirmport 1/1/x3 type networkport 1/1/x4 type toolport 1/1/x1 type tool# configure gigasmart gsopsgsgroup alias gsg1 port-list 1/1/e1 gsop alias gsfvue_apf flow-ops flow-sampling apf set port-list gsg1 gsparams gsgroup gsg1 flow-sampling-device-ip-ranges add ip4addr 1.1.1.0 255.255.255.0 gsparams gsgroup gsg1 flow-sampling-rate 10# configure vport. vport alias vp1 gsgroup gsg1# forward GTP-u traffic to 2’nd level mapmap alias to_vp to vp1 from 1/1/x3# forward GTP-u traffic to vp1rule add pass portsrc 2152exit

Page 3: FlowVUE - Infopoint Security...2 APPLIATI TE lowVU Copyright © 2013 Gigamon. All rights reserved. Sample a Subset of Subscribers • Sample on GTP-u traffic where 10% of the subscribers

3

APPlicAtion notE // FlowVUE

Copyright © 2013 Gigamon. All rights reserved.

# configure 2’nd level map to filter on HTTPmap alias m1 use gsop gsfvue_apf to 1/1/x1 from vp1 gsrule add pass l4port dst pos 2 value 80 gsrule add pass l4port src pos 2 value 80 exit

Derive Application-Usage PatternsFlowVUE can be used to intelligently reduce traffic to the monitoring tools. By combining FlowVUE with other GigaSMART functions like adaptive packet filtering, the traffic can be further reduced by filtering on specific Layer 4 application ports that the operator is interested in monitoring. In the example illustrated below, we are sampling on a subset of subscribers and forwarding only HTTP traffic related to the sampled subscriber set of devices.

# Configure ports no traffic all noconfirmport 1/1/x3 type networkport 1/1/x4 type toolport 1/1/x1 type tool# configure gigasmart gsopsgsgroup alias gsg1 port-list 1/1/e1 gsop alias gsfvue_apf flow-ops flow-sampling apf set port-list gsg1 gsparams gsgroup gsg1 flow-sampling-device-ip-ranges add ip4addr 1.1.1.0 255.255.255.0 gsparams gsgroup gsg1 flow-sampling-rate 10# configure vport. vport alias vp1 gsgroup gsg1# forward GTP-u traffic to 2’nd level mapmap alias to_vp to vp1 from 1/1/x3# forward GTP-u traffic to vp1rule add pass portsrc 2152exit# configure 2’nd level map to filter on HTTPmap alias m1 use gsop gsfvue_apf to 1/1/x1 from vp1 gsrule add pass l4port dst pos 2 value 80 gsrule add pass l4port src pos 2 value 80 exit

Page 4: FlowVUE - Infopoint Security...2 APPLIATI TE lowVU Copyright © 2013 Gigamon. All rights reserved. Sample a Subset of Subscribers • Sample on GTP-u traffic where 10% of the subscribers

APPlicAtion notE // FlowVUE

Copyright © 2013 Gigamon. All rights reserved. Gigamon and the Gigamon logo are trademarks of Gigamon in the United States and/or other countries. Gigamon trademarks can be found at

www.gigamon.com/legal-trademarks. All other trademarks are the trademarks of their respective owners. Gigamon reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

Gigamon® | 598 Gibraltar Drive Milpitas, CA 95035 | PH 408.263.2022 | www.gigamon.com 4024-01 12/13

Common Debug Commands Used to Verify Configuration# Map Statistics #show map stats alias <map-name>

# Port Statistics #show port stats port-list <port-list>

# GigaSMART Statistics #show gsop stats allshow vport stats allshow gsgroup stats allshow gsgroup flow-ops-report alias <gs-group> type flow-filtering any summaryshow gsgroup flow-ops-report alias <gs-group> type flow-filtering gtp-imsi-pattern * upload tftp://192.168.6.37/IMSI_list1

About GigamonGigamon provides an intelligent Visibility Fabric™ architecture to enable the management of increasingly complex networks. Gigamon technology empowers infrastructure architects, managers and operators with pervasive visibility and control of traffic across both physical and virtual environments without affecting the performance or stability of the production network. Through patented technologies, centralized management and a portfolio of high availability and high density fabric nodes, network traffic is intelligently delivered to management, monitoring and security systems. Gigamon solutions have been deployed globally across enterprise, data centers and service providers, including over half of the Fortune 100 and dozens of government and state and local agencies.

For more information about the Gigamon Visibility Fabric architecture visit: www.gigamon.com


Sancharnet Subscribers

Subscribers DatA Extensions

Note: This is a sample newsletter. Most specific stocks and … · Note: This is a sample newsletter. Most specific stocks and trades have been hidden out of respect to paying subscribers

InfoPoint Next Bus Arrivals - Rabbit Transit · InfoPoint allows riders to plan a trip, find their bus including its exact location, stop locations, set an email alert for bus arrivals/departures

Broadband subscribers

Community Infopoint - proof of concept pilot results

IN PRINT – IN PERSON – ONLINEcdn.boatinternational.com/bi_prd/bi/library_pdfs/t... · *Alliance Readership Profile, Sample Boat International Subscribers and Book Buyers. HNWI

médiakit subscribers

dimensionsystems.comdimensionsystems.com/.../Arrive-Infopoint-App_DSI.pdf · ARRIVE INFOPOINT APP Room Booking & Signage Software arrive INFOPOINT A TOUCH SHARED WORKSPACES - AND

APNIC46%20-%20VNNIC%20Update - Read-OnlyØ 2,400,000 FTTH subscribers. Ø 307.000 mobile subscribers FPT: 25% 1 million FTTH subscribers. • Content service: • VnExpress (FPT Online)

Introducing Revit Generative Design€¦ · * For AEC Collection and enterprise subscribers. Create and explore generative studies directly from Revit* Learn from included sample

Weekly Subscribers Weekly Subscribers

Introduction 4 Before You Start 6 Arrive InfoPoint ... · The Arrive InfoPoint™ ID-800 device (here after referred as InfoPoint device or device in the manual) is a 8” touch-screen

Tom Selhorst ‒t.selhorst@swivelsecure - Infopoint Security · Swivel Secure ‒The Company ... RADIUS NAS (network Access Server) ... Citrix Presentation Sever 4 RADIUS Sample Configurations

Arrive Systems - InfoPoint - Meeting room Signage

Buy YouTube Subscribers – Get Real Subscribers on Your Channel

Subscribers List Model

Mobile Subscribers’ Documentation & Authentication · Mobile Subscribers’ Documentation & Authentication A Pakistan Case Study. Sequence Background ... Subscribers NADRA Independent

The Sony channel Channel Research... · The sample included 50:50 Pay TV Subscribers / Non subscribers, with the data weighted back to the population proportions in the analysis

Buy YouTube Subscribers

SPIRENT AVALANCHE - Infopoint Security

NOTICE T SUBSCRIBERS

5,000 Subscribers For Free

Prospects, Leads, & Subscribers

WLE Gender Presentation for EC DEVCO Infopoint meeting

BSNL Subscribers

Security/Critical Facilities Industry · Sample Source: BNP Media publication subscribers and members of myCLEARopinionPanel. Survey Method: Online. Average Survey Length:

20 Tips For Building A List Of Subscribers- Go From Zero to 1,000 Subscribers

INFOPOINT - unog.chhttpAssets)/D25C98F1BE84E750... · EDITION OF ‘INFOPOINT’ We hope you enjoy this new way to keep you informed of everything that is happening within . the Strategic

DIGITAL RATE CARD 2018 / 2019 - Cape Town Travel · 2019-04-01 · +2.2K Subscribers +35K Subscribers +1.2K Subscribers +2 900 Subscribers ... + 1 X Facebook Post R8 000 EVENTS-V

buy subscribers youtube

SOLUTION BRIEF - Infopoint Security

Designing for your subscribers

December Dear Subscribers

Getting Started - infopoint-security.de