whats a logical step up from wireshark?

I was wondering if any one has some good suggestions for a enterprise version of wireshark, that can give good reports and analysis of the network proformace and trouble shooting

One I have used in the past is network observer. Network Instruments – Observer

but i know wire-shark do have some enterprise solutions and things like LAN guardian are out there two, just looking for some suggestions.

Cheers

Aaron

Find more posts tagged with

Comments

CodeBlox

Possibly something from SolarWinds Orion? I love the netflow section in there. Helps me out a bunch when seeking which devices are top talkers.

docrice

Perhaps you're thinking about Pilot:

http://www.riverbed.com/products-solutions/products/performance-management/network-infrastructure/High-Speed-Packet-Analysis.html

or other CACE (now Riverbed) products:

http://www.cacetech.com/

If you're just looking for top-talkers, there are plenty of tools that can help with that including flow collectors and such. For packet inspection, there's also Solera (recently acquired by Bluecoat) and NetWitness.

DevilWAH

we have LanGardian that does an OK job for top talkers, and Mutiny, both can do some decent netflow stuff. But I am looking from more in depth packet inspections. I want to do application analysis and montitor video and voice streams

wes allen

Maybe look into some of the netflow / sflow collectors like Scrutinizer?

networkjutsu

I used to work for a Fortune 50 company that used nGenius InfiniStream and Opnet. The appliances were Network General for the most part but since NetScout bought them, the sniffer guys started looking a different one and started investing on Opnet's solution, which apparently is now part of Riverbed. Since the network engineering team and packet sniffer guys were merged together before I left the company, I've had privileges of playing with the tools. The InfiniStream Console was easier for me to use than the Opnet solution but it was more powerful than the InfiniStream. Since there were only two floating license (license wasn't cheap), I didn't get to play much and also the duties were still pretty much separate even though they merged the two teams.

Good luck with your choice!

DevilWAH

Apart from top tens and protocol stats I have not used netflow much beyond this. How much can you pull from netflow data, I am thinking things like packet latency and network issues?

izatt82

Might want to take a look at BRO network programing language. BRO will do anything and everything you could want from analyzing network traffic. Depends on how you want to move forward. Exercise: Bro Programming Primer