DX Unified Infrastructure Management

  • Private Community
 View Only

  • 1.  Subnet Port List

    Posted Feb 08, 2016 10:13 AM

    Hi all,

     

    I would like to find all ports which are used between two defined Subnets. I'm only interested in the ports to check if I have everything in my firewall before switching it on... So no need for the exact time or amount of packets coming in

     

    Is that possible with nfa? To evaluate the flow forensics is pretty longlasting..

     

    thanks and best regards,

    Steve



  • 2.  Re: Subnet Port List
    Best Answer

    Broadcom Employee
    Posted Feb 11, 2016 01:32 PM

    Flow Forensics would be the only way to see ALL ports during a time period as it is the raw Netflow data.

    All other reports are only Top N data.

     

    For example for 15 minute data, we only keep the top 100 protocols https://docops.ca.com/display/NFA933/15-Minute+Data



  • 3.  Re: Subnet Port List

    Posted Feb 17, 2016 10:06 AM

    Hi Christopher,

     

    thanks for your answer! Do you have an idea how I can export these data for a scriptbased evaluation?

     

    rgds Steve



  • 4.  Re: Subnet Port List

    Broadcom Employee
    Posted Feb 17, 2016 10:21 AM

    You can export Flow Forensics reports by clicking the Down Arrow at the top left of the Report Results section, and then select "Export CSV" like below:

     

    ExportToCsv.png