In order to monitor the traffic passing through your network, you need a monitoring point deployed and connected to the switch port you want to monitor. Once this is done, all you need to do is to identify local subnets prior to monitoring.

Prerequisites

Identify local subnets

In order for APM to be able to distinguish between inbound and outbound traffic, you need to identify the subnets local to the monitoring point. Configuring traffic direction also enables you to resolve hostnames on local subnets. By default, hostnames are resolved every time a Usage monitoring page is loaded. Configuring traffic direction ensures that IP addresses in local subnets are resolved at the time flow records are generated, and that that information preserved for the duration of Usage monitoring history. Addresses in external subnets will continue to be resolved in real-time.

To specify local subnets:

  1. Navigate to Usage > Monitoring Points.
  2. For the monitoring point interface you want to configure, click the icon.
  3. In the Configure dropdown, select Traffic Direction.
  4. In the IP Address and Netmask fields, enter a local subnet (e.g., 172.16.123.0) and associated subnet mask (e.g., 255.255.255.0).
  5. Click to add any additional local subnets.
  6. Click Apply before selecting any other configuration option (e.g., Alert Profiles).

Next steps

Possible next steps include:

  • To start Usage monitoring, see Start Usage Monitoring.
  • To set up alerts to detect when various traffic flow characteristics are outside of acceptable limits, see Usage Alerts.
  • To identify users, you can enable user resolution. See User Resolution.
  • To identify application flows that are not already identified by APM, see Custom Applications.
  • To configure your monitoring point to monitor from a secondary Usage monitoring port or ports, see Usage Monitoring Ports