It is now possible to display traffic between different points (addresses, ASes, cities, countries, ports, L2 MAC addresses) in a single table/graph with ordering done by the sum of traffic in both directions. When performing queries with bidirectional grouping, the results are shown regardless of the actual source/destination parameter. Rather, they are selected based on the actual amount of traffic, number of flows, etc., passed from one point to another.
It is now possible to display traffic between different points (addresses, ASes, cities, countries, ports, L2 MAC addresses) in a single table/graph with ordering done by the sum of traffic in both directions. When performing queries with bidirectional grouping, the results are shown regardless of the actual source/destination parameter. Rather, they are selected based on the actual amount of traffic, number of flows, etc., passed from one point to another.
The new data structure has been implemented in NFA v 23.01 for the FLOWd component, resulting in a stunning 4-fold decrease in memory usage and the overall 25% faster handling of data queries. This improvement makes the modest NFA system requirements even more humble and ultimately enhances the NFA’s end-user experience.
Other substantial enhancements and fixes include an improved selection of data intervals in NFA’s Data Explorer, Dashboards, and Alerts sections, the addition of Source and Destination ASN names to the Data Explorer table, the increased max upstream/downstream ASNs limit for the Sankey diagram and more.
If you are just starting to explore NFA, or if these new features are relevant to your network traffic analysis processes, request a free 30-day trial of the product or email support@noction.com with any questions. We’d love to hear from you!