Watch the full OnDemand Webcast: http://bit.ly/tuneupnetwork It’s time to make good on that new year’s resolution. Admit it, in a moment of weakness as the clock hit midnight you resolved to dig in and tune up your corporate network in the new year. Well, the new year is already passing quickly by, so if you haven’t yet made good on that resolution, here is your chance. In these slides from our web seminar, we return to the basics – overall network evaluation, baseline measurements and comparisons, typical yet troublesome network issues, sharing bandwidth in the presence of time-sensitive applications, security, and overall network monitoring and reporting, just to name a few. We focus on practical issues and practical methods for improving the overall health of your network. In these slides, we will cover: - Critical elements to consider when evaluating your network - Common pitfalls and how to avoid them - Developing and using network baselines - Optimizing network usage in the presence of competing applications and protocols - Monitoring and reporting on your well-tuned network What you will learn: 1. How and where to find the data you need 2. How to automate network monitoring and analysis to ensure the success of your tune up 3. How to quickly diagnose problems when things go wrong

1. Tune Up Your Network For The New Year Jay Botelho Director of Product Management WildPackets jbotelho@wildpackets.com

2. Agenda What to consider Resolve to develop baselines Common pitfalls The network battlefield Monitoring for life Troubleshooting as a last resort Company overview Product line overview

3. What To Consider

4. Know Your Network Traffic levels per segment Mbps? Packets per second? Packet size distribution? Traffic types per segment Data? VoIP? Video? Baselines Establish and re-establish Use automated analysis to identify anomalies

5. Statistics vs. Packets

6. Not All Flows Are Created Equal

7. It’s All In The Packets Packets contain vitalinformation not detected by flow-based systems

8. Choices and Comprises Greater visibility Monitoringand troubleshooting Single solution Integrated, cost-effective Packet-based Overhead? Cost?

9. Key VoIP/Video Issues Packet Loss Latency Jitter CAMP IT Pinpointing the Problem 9

10. Be Specific Where to collect data? Real-time or post-capture analysis? Everywhere? What data to collect? Am I getting all the data I expect?

11. Resolve to Develop Baselines

12. Network Dashboard

13. VoIP Dashboard

14. Application Dashboard

15. A Bit More Precisely … Application Response Time

16. Archiving Your Results Packets files Formatted reports

17. Common Pitfalls

18. 5 Most Common Networking Problems Cabling issues Connectivity problems Configuration Hardware malfunctions Excessive network collisions Collisions are normal and expected Early collisions – first 512 bits – recovery automatic (2 – 3 ms) Late collisions – recovery 100x longer – eg. NIC stuck in TX mode Software problem DNS configuration WINS configuration Duplicate IP addresses

19. The Network Battlefield

20. Data Impacts on VoIP

21. Network Traffic: Quantitative Analysis Most network engineers are concerned about the amount of traffic on their networks Utilization (percentage of bandwidth) Throughput (bits or bytes per second) You also need to be concerned about individual utilization components How much bandwidth and throughput can be attributed to each application or process? Clarifies which application traffic may need to be tuned or controlled How well or poorly will the baseline (trended) behavior of each application interact with VoIP Don’t forget to also consider the reverse case – VoIP’s impact on existing applications

22. Key VoIP/Video Issues Packet Loss Latency Jitter CAMP IT Pinpointing the Problem 22

23. Network Traffic: Qualitative Analysis The quality of your network traffic is potentially more important than its quantity when it comes to VoIP Many traffic streams are “bursty” in nature Burstiness my occur over long period of time, or may consist of rapid, recurring traffic spikes Prolonged rises in utilization may decrease the number of calls that can occur simultaneously Sharp spikes may cause very noticeable quality issues with ongoing calls Your baseline monitoring should consider not only averages and long-term trends, but also the short-term peaks and dips that characterize your traffic flow

24. Assessing the Monster's Impact While traditional network applications are very tolerant of jitter, latency, and even some degree of packet loss, VoIP is very sensitive to these troubles Levels of jitter, latency, and packet loss that would be easily tolerated on a data network can be devastating on a converged VoIP network Pre- and post-deployment network assessments are critical You must understand your network’s ability to accommodate VoIP Current latency, jitter, and packet loss QoS capabilities Current bandwidth utilization (is there any room for VoIP) You must maintain a constant vigil after deployment to watch for imminent troubles

25. The Impact of "Just One More Call" Although a network link may be able to support a number of concurrent calls, one additional call is often enough to cause quality problems… 1st Call 2nd Call x2111 x1111 x2112 x1112 3rd Call x2113 x1113 Example: The WAN can support 2 simultaneous calls. What happens when a third call is attempted??? Call #3 Causes Poor Quality for ALL Calls

26. Monitoring For Life

27. Changing Methods - Data Recorders Servers IDS/IPS System Post-incident Real-time

28. Strategy for Monitoring 10G Ethernet Which of the following apply to your strategy for monitoring 10G segments? (Select all that apply) SOURCE:Benchmarking Network and Security Operations: Tools, Processes, and Enabling Technologies Study, 2009, Enterprise Management Associates. n=124

29. 10Gig Network Analysis Workflow Identify Key Analysis Pts Deploy 24x7 Monitoring Alarms/Alerts At 10Gig – 24x7 Is Essential Problem? NO YES Rewind Data Analyze Tune if Necessary

30. Troubleshooting As A Last Resort

31. Network Recording,Real-Time Statistics, Forensics Search Display TimeLine Graph during capture-to-disk Utilization (Mbits/s) Packets/s unicast/multicast/broadcast Packet sizes VLAN/MPLS Protocols Company and Product Line Overview

32. A Picture is Worth a 1000 Words A graph of latency, jitter, or packet loss can speak volumes about network health, either for proactive or reactive troubleshooting Overlaying this graph with a graph of utilization or total throughput can reveal even more about the causes of VoIP troubles

33. Analyst’s Perspective

34. Visual Expert Provides Proof Two requests for data, two quick TCP Acks, but then a long delay before the server sends the requested data ACK fast = Network fast Then the Data gets returned much later Requests and Acks Data slow = System slow

35. Company Overview

36. Corporate Background Experts in network monitoring, analysis, and troubleshooting Founded: 1990 / Headquarters: Walnut Creek, CA Offices throughout the US, EMEA, and APAC Our customers are leading edge organizations Mid-market, and enterprise lines of business Financial, manufacturing, ISPs, major federal agencies,state and local governments, and universities Over 7,000 customers / 60+ countries / 80% of Fortune 1,000 Award-winning solutions that improve network performance Internet Telephony, Network Magazine, Network Computing Awards United States Patent 5,787,253 issued July 28, 1998 Different approach to maintaining availability of network services

37. What We Do Provide network visibility and intelligence … WatchPoint, OmniPeek, OmniEngines Expert systems – we find the problems for you Superior drill-down capability – trouble-shoot from anywhere Flexible, customizable, extensible – leverage your investment Professional services, training, best practices For all network segments … Data center to desktop to remote office LAN, WAN, Wireless … HTTP, Email, Database, VoIP, Video … To … Network engineers; IT Management; Developers

38. Real-World Deployments Education Financial Government Health Care / Retail Telecom Technology

39. With accurate visibilityinto the network…IT staff can improve: End-user Productivity Network Performance Application Performance Security Compliance

40. Product Line Overview

41. Product OfferingsSoftware and Turnkey Appliances Enterprise Monitoring and Reporting WatchPoint Server OmniFlow, NetFlow, and sFlow Collectors Network Probes & Recorders Omnipliance Network Recorders – Edge, Core TimeLine Network Recorder OmniAdapter Analysis Cards Distributed Analysis Software OmniPeek – Enterprise, Professional, Basic, Connect OmniEngine – Enterprise, Desktop, OmniVirtual Portable Solutions OmniPeek software Omnipliance Portable

42. WatchPointCentralized Monitoring for Distributed Enterprise Networks High-level, aggregated view of all network segments Monitor per campus, per region, per country Wide range of network data NetFlow, sFlow, OmniFlow, SNMP Web-based, customizable network dashboards Flexible and detailed reports

44. Omnipliance Network Recorders Captures and analyzes all network traffic at the source 24x7 Runs our OmniEngine intelligent probe software Generates vital statistics on network and application performance Intuitive root-cause analysis of performance bottlenecks Intelligent data transport Network data analyzed locally Detailed analysis passed to OmniPeek on demand Summary statistics sent to WatchPoint for long term trending and reporting Efficient use of network bandwidth Expert analysis speeds problem resolution Fault analysis, statistical analysis, and independent notification Multiple Issue Digital Forensics Real-time and post capture data mining for compliance and troubleshooting

45. TimeLine Network Recorder11.7Gbps Sustained Capture Fastest network recording and real-time statistical display — simultaneously Network statistics display in TimeLine visualization format Rapid, intuitive forensics search and retrieval Historical network traffic analysis and quick data rewinding Several pre-defined forensics search templates making searches easy and fast A natural extension to the WildPackets product line Turnkey bundled solution

46. Omnipliance Network RecordersPrice/performance solutions for every application

47. OmniPeek Network Analyzer OmniEngine Manager Connect and configure distributed OmniEngines/Omnipliances Comprehensive dashboards present network traffic in real-time Vital statistics and graphs display trends on network and application performance Visual peer-map shows conversations and protocols Intuitive drill-down for root-cause analysis of performance bottlenecks Visual Expert diagnosis speeds problem resolution Packet and Payload visualizers provide business-centric views Automated analytics and problem detection 24/7 Easily create filters, triggers, scripting, advanced alarms and alerts

48. Key Differentiators High-level network monitoring to root-cause analysis Single solution for today’s converged networks Wired, Wireless, 1GB, 10GB, VoIP, Video, TelePresence, IPTV Reduce and even eliminate network downtime Automated monitoring 24x7 Speedy resolution of network bottlenecks Improve network and application performance Uniquely Extensible Platform – tailored to your needs Plug-ins and APIs for integration and customization

49. Thank You! WildPackets, Inc.1340 Treat Boulevard, Suite 500Walnut Creek, CA 94597(925) 937-3200