Table of Contents
Advertisement
Network and Security Manager Administration Guide
About Profiler Views
690
Purge Profiler Database If Size Exceeds —NSM purges the profiler database size if
it exceeds 1 GB (1000 MB) by default.
Max Profiler Database Size After Purging—If the database size exceeds its maximum
limit, NSM purges the profiler database size until the size reaches 750 MB by default.
Profiler Query Timeout (120 seconds or 2 minutes by default).
Hour Of Day To Perform Database Optimization (midnight GMT by default).
AVT View Settings:
Number Of Sessions To Display Per Application—The range is 5–10,000 sessions;
the default is 10 sessions.
Hours Of Session Data To Display from Present Time—Configure from 1–24 hours;
the default is one hour.
The Profiler includes four main views that you can use to analyze data about your profiled
network:
Protocol Profiler—Displays a snapshot of Layer-7 traffic on your internal network
including source, destination, service context, and value. Use this view to analyze
specific applications that are running on your network, their versions, and the values
for each supported context.
Network Profiler—Displays a high-level snapshot of static information (Layer-3, Layer-4,
and RPC protocols, ports, and program numbers) on your internal network along with
the Source/Destination IP, and Source/Destination MAC and Organizationally Unique
Identifier (OUI). Use this view to quickly see which hosts are communicating with other
hosts, and what services are passing between them.
Violation Viewer—Similar to the Network Profiler, the Violation Viewer displays a
high-level snapshot of network traffic— Layer-3, Layer-4, and RPC protocols, ports,
and program numbers along with the corresponding Source/Destination IP, and
Source/Destination MAC and OUI. The Violation Viewer, however, enables you to more
effectively view content that does not match or is in violation of certain patterns that
you can set in a shared object called a permitted object. You must configure permitted
objects before data appears in this view.
Application Profiler—Displays the network traffic information at the application and
application-group level. Applications that are running in a network are grouped by the
common functionality they provide to the network user. These applications form a
hierarchal structure called an application hierarchy. For example, Yahoo messenger,
MSN, and AIM are chat applications; Kazaa, Bittorent, and Gnutella are file sharing
applications. In the application hierarchy, you view both chat and file-sharing
applications are grouped under peer-to-peer applications.
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
