1-650-308-8887

Netflow Logic News


February 21, 2024

NetFlow and SNMP Analytics for Splunk App 4.5.22 Released

The NetFlow Logic team is pleased to announce the release of NetFlow and SNMP Analytics for Splunk App 4.5.22 (https://splunkbase.splunk.com/app/489/).

Release Notes:
  • Added new dashboard: “SNMP Devices CPU and Memory”
  • Improved “Interface Errors and Discards” dashboard
  • Updated Azure dashboards
  • Bugfixes

To learn more about NetFlow Optimizer and Splunk integration click here.


February 9, 2024

NetFlow Optimizer 2.10.1.3.2 (HotFix) Released

This security update addresses the following vulnerabilities:

  • Apache Tomcat 9.0.85 (CVE-2023-46589, CVE-2023-42795, CVE-2023-44487)
  • JRE 11.0.22 (the latest version)

Download today at: https://docs.netflowlogic.com/release-notes/.


January 22, 2024

NetFlow Optimizer Is Not Impacted by OpenJDK Vulnerability Advisory: 2024/01/16

On January 16, 2024, Oracle reported fixes for the following vulnerabilities in OpenJDK:

OpenJDK CVEs:

  • CVE-2024-20932 security-libs/java.security
  • CVE-2024-20918 hotspot/compiler
  • CVE-2024-20952 security-libs/java.security
  • CVE-2024-20926 core-libs/javax.script
  • CVE-2024-20919 hotspot/runtime
  • CVE-2024-20921 hotspot/compiler
  • CVE-2024-20945 security-libs/javax.xml.crypto

OpenJFX CVEs:

  • CVE-2024-20925 javafx/media
  • CVE-2024-20923 javafx/graphics
  • CVE-2024-20922 javafx/window-toolkit

NetFlow Logic is aware of the vulnerability and has completed verification, confirming that these issues do not affect our products or services.

If you have any concerns or questions, please contact us at support@netflowlogic.com.


October 17, 2023

NetFlow Optimizer Is Not Impacted by OpenJDK Vulnerability Advisory: 2023/10/17

On October 17, 2023, Oracle reported fixes for the following vulnerabilities in OpenJDK:

  • CVE-2023-22067 (other-libs/corba)
  • CVE-2023-22081 (security-libs/javax.net.ssl)
  • CVE-2023-22025 (hotspot/compiler)

NetFlow Logic is aware of the vulnerability and has completed verification, confirming that these issues do not affect our products or services.

If you have any concerns or questions, please contact us at support@netflowlogic.com.


September 30, 2023

NetFlow Optimizer 2.10.1.0 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer (NFO) 2.10.1.0.23.
This minor release brings several enhancements:

  • Improved support for SNMP Polling and SNMP Traps:
    – Added SNMP polling requests queue length and the count of unresponsive devices to the Status page
    – Included unresponsive devices in NFO internal logs (nfo_audit.log)
  • Improved Error Logging for AWS S3 Output
  • Improved Formatting of Output Syslog and JSON Messages

Download NetFlow Optimizer 2.10.1.0.23 today from our website at https://www.netflowlogic.com/downloads/.


September 28, 2023

Technology Add-on for NetFlow 4.5.17 Released

The NetFlow Logic team is pleased to announce the release of Technology Add-on for NetFlow 4.5.17 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Fixed setting src field to src_ip for SNMP Trap messages

To learn more about NetFlow Optimizer and Splunk integration click here.


July 24, 2023

NetFlow Optimizer 2.10.0.1 (HotFix) Released

This update fixes the following vulnerabilities:

  • OpenJDK (CVE-2023-22049, CVE-2023-22036, CVE-2023-22006)
EDFN
  • AsyncHttpClient 2.12.3 (was dependent on old Netty version 3.x, CVE-2021-21290, CVE-2020-11612)
  • Okta SDK 8.2.5 (no vulnerabilities, but it depends on SnakeYAML)
  • SnakeYAML 2.0 (CVE-2022-41854, CVE-2022-1471)
NetFlow Optimiser
  • OpenSearch client 2.8.0 (no vulnerabilities, but it depends on SnakeYAML)
  • Azure Identity 1.9.2 (no vulnerabilities, but it depends on Json-smart)
  • Json-smart 2.4.10 (CVE-2023-1370)

Download today at: https://www.netflowlogic.com/downloads/.


June 30, 2023

NetFlow Optimizer 2.10.0.0 Released

The NetFlow Logic team is pleased to announce the major release of NetFlow Optimizer (NFO) 2.10.0.0.140. This major update brings an array of exciting features and enhancements, empowering network operations and fortifying cybersecurity postures for our customers.

Key highlights of this release incl:

  • Full IPv6 Network Support: NFO now fully supports IPv6 networks, enabling organizations to overcome the limitations of IPv4 address exhaustion. By leveraging the advantages of IPv6, such as a vast address space, simplified address management, enhanced security, and improved performance, organizations can future-proof their network infrastructure.
  • Okta Integration: We have integrated NFO with Okta, a leading provider of user identity and access management products. This integration enhances the authentication and access control capabilities of NFO, ensuring secure and seamless user management for our customers.
  • License Manager: The new License Manager feature is specifically designed for customers with multiple NFO deployments. It enables them to designate one NFO instance as the License Manager (NLM) responsible for distributing licenses to other NFO instances and collecting usage information. This streamlines license management and ensures optimal license utilization across the network.
  • Integration with Microsoft Azure Log Analytics Workspace: We are excited to introduce NFO Output integration with Microsoft Azure Log Analytics Workspace. By combining the power of Azure Analytics Workspace and Sentinel, organizations can benefit from advanced data exploration, analytics capabilities, and comprehensive security monitoring. This integration provides unparalleled visibility, actionable insights, and enhanced threat detection across cloud environments.
Experience the power of NetFlow Optimizer 2.10.0.0.140 today by downloading it from our website at: https://www.netflowlogic.com/downloads/.


April 24, 2023

NetFlow Optimizer 2.9.1.3 (HotFix) Released

This security update fixes the following vulnerabilities:

  • Apache Commons Text 1.10.0 or a later version (CVE-2022-42889)
  • Apache Commons FileUpload (CVE-2023-24998)
  • Kafka client updated to 3.4.0 (CVE-2022-34917)
  • OpenSearch client updated to 2.6.0 (CVE-2023-23612)
  • HSQLDB (CVE-2022-41853)
  • FasterXML jackson-databind (CVE-2022-42003, CVE-2022-42004)
  • OpenJDK (CVE-2023-21930, CVE-2023-21937, CVE-2023-21938, CVE-2023-21939, CVE-2023-21954, CVE-2023-21967, CVE-2023-21968)

Download today at: https://www.netflowlogic.com/downloads/.


March 22, 2023

NetFlow and SNMP Analytics for Splunk App 4.5.16 and Technology Add-on for NetFlow 4.5.16 Released

The NetFlow Logic team is pleased to announce the release of NetFlow and SNMP Analytics for Splunk App 4.5.16 (https://splunkbase.splunk.com/app/489/) and Technology Add-on for NetFlow 4.5.16 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Added support for IPv6 networks
  • Bugfix in “Interface Errors and Discards” dashboard
  • Fixed savedsearch updating the interfaces_20003 lookup table

To learn more about NetFlow Optimizer and Splunk integration click here.


February 20, 2023

NetFlow Optimizer Is Not Impacted by Apache Tomcat – FileUpload DoS Vulnerability (CVE-2023-24998)

CVE-2023-24998 detail: “Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads.”

NetFlow Logic is aware of the vulnerability and has completed verification that this issue does not affect our products or services.

If you have any concerns or questions contact us at support@netflowlogic.com.


December 22, 2022

Technology Add-on for NetFlow 4.5.13 Released

The NetFlow Logic team is pleased to announce the release of Technology Add-on for NetFlow 4.5.13 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Indexed fields are changed to be sourcetype specific, so they would not interfere with other apps

To learn more about NetFlow Optimizer and Splunk integration click here.


December 21, 2022

NetFlow Logic Cribl Pack Released

The NetFlow Logic team is pleased to announce a new Cribl pack, titled “NetflowLogic NetFlow Optimizer”. Our pack provides pipeline for handling NetFlow, sFlow, IPFIX, and other flow data feeds from NetFlow Optimizer (NFO).

NFO reduces volume of flow data by applying data consolidation rules (typical reduction is up to 80%). NFO enriches NetFlow data with GeoIP, Applications, User identity, and Reputation.

Cribl pack reduces volume by removing redundant information, such as the human-readable timestamp (typical reduction is additional 20-30% overall).

For more information, visit https://packs.cribl.io/ and search dispensary for “netflow”.


December 20, 2022

NetFlow and SNMP Analytics for Splunk App 4.5.12 Released

The NetFlow Logic team is pleased to announce the release of NetFlow and SNMP Analytics for Splunk App 4.5.12 (https://splunkbase.splunk.com/app/489/).

Release Notes:
  • Traffic Using Critical Ports
  • Communications with Malicious Hosts
  • Added tstats (TS) dashboards
  • Network Conversations by Duration TS
  • Network Conversations by Country TS
  • Network Conversations by Autonomous Systems TS
  • Additional filters added to TCP Health dashboard
  • Bugfixes

To learn more about NetFlow Optimizer and Splunk integration click here.


November 30, 2022

Sumo Logic App for IT Operations and Security Insight Released

The NetFlow Logic team is pleased to announce a new Sumo Logic app for IT Operations and Security Insight. This app helps customers to gain complete network visibility in their data centers and cloud deployments. With NetFlow Optimizer and Sumo Logic, enterprises can:

  • Identify applications and users that consume bandwidth
  • Identify impact of physical network devices and interface failures on the virtual and physical networks
  • Identify security threats and trace known threat sources

Additional Resources:
NetFlow Logic App for Sumo Logic
NetFlow Optimizer


November 14, 2022

NetFlow Optimizer 2.9.1.2 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer 2.9.1.2.3 (HotFix).
This hotfix includes the following:

  • Bug fix in Network Conversations Module
  • Implementation of additional status values in Network Conversations Module
  • Performance improvements

Download today at: https://www.netflowlogic.com/downloads/.


November 7, 2022

NetFlow Optimizer Is Not Impacted by OpenSSL 3.0 Vulnerabilities (CVE-2022-3602 and CVE-2022-3786)

NetFlow Optimizer Is Not Impacted by OpenSSL 3.0 Vulnerabilities (CVE-2022-3602 and CVE-2022-3786).

NetFlow Logic is aware of these vulnerabilities and has completed verification that these issues do not affect our products or services. No customer action is required.

If you have any concerns or questions contact us at support@netflowlogic.com.


August 9, 2022

NetFlow Optimizer 2.9.1 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer 2.9.1.

New Features:
  • Improved flow data enrichment with User Identity
  • Added new destinations: Amazon Open Search, Kafka, AWS S3 buckets, and Disk
  • Added new integration with AT&T Cybersecurity (Alien Vault)

Download today at: https://www.netflowlogic.com/downloads/.


July 12, 2022

NetFlow and SNMP Analytics for Splunk App 4.5.1 and Technology Add-on for NetFlow 4.5.1 Released

The NetFlow Logic team is pleased to announce the release of NetFlow and SNMP Analytics for Splunk App 4.5.1 (https://splunkbase.splunk.com/app/489/) and Technology Add-on for NetFlow 4.5.1 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Added Network Conversations by Country dashboard
  • Added Network Conversations by Autonomous Systems dashboard
  • Network Conversations dashboards usability improvements
  • Network Conversations by Traffic added Sankey, bubble, and topology views
  • Updated as-names lookup
  • Bugfixes

To learn more about NetFlow Optimizer and Splunk integration click here.


March 25, 2022

NetFlow Optimizer 2.9.0 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer 2.9.0.

New Features:
  • Improved support for flow logs from three major cloud providers: AWS, Microsoft Azure, and Google cloud
  • Added flow data enrichment with: User Identity, Applications, Security Reputation
  • Added new integrations: Sumo Logic, Splunk Observability Cloud (new Splunk product), Amazon S3, Microsoft Active Directory and Azure Active Directory

Download today at: https://www.netflowlogic.com/downloads/.


December 11, 2021

NetFlow Optimizer Is Not Impacted by Apache Log4j Vulnerability (CVE-2021-44228)

A newly discovered vulnerability impacting Apache Log4j 2 versions 2.0 to 2.14.1 was disclosed on the project’s GitHub on December 9, 2021, and designated as CVE-2021-44228 with the highest severity rating of 10.

From CVE-2021-44228 detail: “An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled.”

NetFlow Logic is aware of the vulnerability and has completed verification that this issue does not affect our products or services.

If you have any concerns or questions contact us at support@netflowlogic.com.


November 24, 2021

NetFlow and SNMP Analytics for Splunk App 4.4.3 and Technology Add-on for NetFlow 4.4.3 Released

The NetFlow Logic team is pleased to announce the release of NetFlow and SNMP Analytics for Splunk App 4.4.3 (https://splunkbase.splunk.com/app/489/) and Technology Add-on for NetFlow 4.4.3 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Added tstats version of various dashboards
  • Added metrics based dashboards
  • New dashboards
  • Network Conversations Top Applications and Users
  • Network Conversations Devices by Concurrent Connections
  • Minor bug fixes

To learn more about NetFlow Optimizer and Splunk integration click here.


September 28, 2021

NetFlow and SNMP Analytics for Splunk App 4.3.12 Released

The NetFlow Logic team is pleased to announce the release of NetFlow and SNMP Analytics for Splunk App 4.3.12 (https://splunkbase.splunk.com/app/489/).

Release Notes:
  • New dashboards for Network Conversations Module (NFO 2.9)
  • Bug fixes

To learn more about NetFlow Optimizer and Splunk integration click here.


September 9, 2021

NetFlow Optimizer 2.8.1.0.75 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer 2.8.1.0.75.

New Features:
  • Security Update: Updated Java and Tomcat to the latest available security release
  • Added new features in Network Conversation Module
  • Various improvements and bux fixes

Download today at: https://www.netflowlogic.com/downloads/.


June 14, 2021

NetFlow Optimizer 2.8.0.0 Released

The NetFlow Logic team is pleased to announce the major release of NetFlow Optimizer 2.8.0.0.380.. This release enables new capabilities for network operations and improvements for cybersecurity postures for customers who run mission-critical applications across all regions and accounts on cloud platforms like AWS, Microsoft Azure, Google Cloud, etc., as well as on hybrid cloud infrastructures.

Several key features:

  • Added new NFO Module: Network Conversations. This Module reports consolidated network conversations. Optionally it stitches client-server request-response flows, reporting bytes and packets server-to-client and client-to-server in separate fields. It also calculates and reports conversation metrics such as Duration (TCP session duration), State (Begin, Continue, End), Action (Accepted or Rejected), etc. The Network Conversations Module allows you to configure output fields, and to select dual destinations: UDP output and AWS S3
  • Enhanced Support of AWS VPC Flow logs. Added support of AWS VPC Flow logs v3 and other AWS VPC Flow logs processing improvements
  • Support MAC addresses in sFlow and other L2 flows. Added source and destination MAC address to output, if they are present in flow records
  • Improved SNMP Polling Service. Introduced “Device Group” to improve management of OID sets. For example, Palo Alto Networks (PAN) polling requests are now sent only to PAN devices. Improves OID sets configuration. Allow to enable / disable SNMP polling by OID sets. Improved logging for troubleshooting
  • Improved Cisco AnyConnect Modules. Now, NFO users can take advantage of Cisco AnyConnect NVM Flow Logs (Secure VPN access for remote workers), including nvzFlow v3 and nvzFlow v4

Download today at: https://www.netflowlogic.com/downloads/.


June 14, 2021

NetFlow Analytics for Splunk App 4.2.30 and Technology Add-on for NetFlow 4.2.30 Released

The NetFlow Logic team is pleased to announce the release of NetFlow Analytics for Splunk App 4.2.30 (https://splunkbase.splunk.com/app/489/) and Technology Add-on for NetFlow 4.2.30 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Added summary indexing (metrics based) and corresponding dashboards for large volumes of flow data (saved searches and dashboards)
  • Added several dashboards based on tstats command for better performance
  • Added SNMP based Interface Errors and Discards
  • Added Sankey view to several dashboards
  • Various cosmetic changes
  • Bug fixes

To learn more about NetFlow Optimizer and Splunk integration click here.


May 14, 2021

Technology Add-on for NetFlow 4.2.4 Released

The NetFlow Logic team is pleased to announce the release of Technology Add-on for NetFlow 4.2.4 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Added indexed fields in preparation for tstats searches
  • Added support for SC4S (https://splunkbase.splunk.com/app/4740/)
  • Bug fixes

To learn more about NetFlow Optimizer and Splunk integration click here.


March 11, 2021

NetFlow Optimizer 2.7.1.4.2 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer 2.7.1.4.2 (HotFix).
This hotfix includes the following:

  • to enable Repeater output filtering based on the list of exporter IPs and/or exporter IPs subnets.
  • to address the issue with SNMP GetBulk requests.

Download today at: https://www.netflowlogic.com/downloads/.


January 20, 2021

DDoS Detector for Splunk App 1.1.42 Released

The NetFlow Logic team is pleased to announce the release of DDoS Detector for Splunk App 1.1.42 (https://splunkbase.splunk.com/app/4016/).

Download today at DDoS Detection Solution.


December 15, 2020

NetFlow Optimizer 2.7.1.1.36 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer 2.7.1.1.36.
This release is to close known security vulnerabilities in Java and Tomcat.
NFO is rebuilt with Java 8u275 and Tomcat 9.0.41.

Download today at: https://www.netflowlogic.com/downloads/.


October 7, 2020

NetFlow Analytics for Splunk App 4.1.20 and Technology Add-on for NetFlow 4.1.20 Released

The NetFlow Logic team is pleased to announce the release of NetFlow Analytics for Splunk App 4.1.20 (https://splunkbase.splunk.com/app/489/) and Technology Add-on for NetFlow 4.1.20 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Added dashboards for Microsoft Azure NSG Flow Logs
  • Added dashboards for Google Cloud VPC Flow Logs
  • Improved dashboards for Amazon AWS VPC Flow Logs
  • Added Security and ITOps alerts
  • Bug fixes

To learn more about NetFlow Optimizer and Splunk integration click here.


September 18, 2020

NetFlow Optimizer 2.7.1.1.21 Released

The NetFlow Logic team is pleased to announce the minor release of NetFlow Optimizer 2.7.1.1.21.

New Features:
  • Added Microsoft Azure NSG Flow Logs Support
  • Added NFO Modules for Google Cloud VPC Flow logs
  • Added Reporting of “Services” to AWS VPC Flow Logs
  • Upgraded NFO to Tomcat 9
  • Upgrade NFO to Java 8 Update 261 (8u261)

Download today at: https://www.netflowlogic.com/downloads/.


June 24, 2020

Exabeam Signs NetFlow Logic as a Preferred Partner

We are very pleased to announce a global partnership with Exabeam, a leading SIEM provider whose product enables a smarter way of a cyberattack detection, investigation and response in 51 percent less time than the competition. With NetFlow Logic’s leading *Flow data optimization platform, this will provide our joint customers an alternative solution for extended visibility and improved network security.

Please visit https://bit.ly/3dAiukh for more details on this partnership and Exabeam’s offerings.


March 1, 2020

NetFlow Optimizer 2.7.0.0.264 Released

The NetFlow Logic team is pleased to announce the major release of NetFlow Optimizer 2.7.0.0.264.

New Features:
  • Added Amazon Web Services (AWS) VPC Flow logs support
    – Ingest VPC Flow logs from AWS CloudWatch, Kinesis stream, or S3
    – Support processing VPC Flow logs from multiple AWS accounts, VPCs, and regions
    – Enrich native VPC Flow logs with real-time information, such as EC2 name, DNS name, and AWS region
  • Added support for Cisco AVC
    Cisco Application Visibility and Control (AVC) technology is now supported. AVC classifies more than 1400 applications, and reports them in IPFIX. AVC is available across routers, campus switches, access points, and wireless controllers. See https://www.cisco.com/c/en/us/products/routers/avc-control.html for details.
  • Support new MaxMind authentication
    Alow users to enter their own MaxMind subscription credentials.
  • Package NFO and External Data Feeder (EDFN) together
    EDFN is packaged together with NFO in one installer (rpm, tar.gz, and msi).

Download today at: https://www.netflowlogic.com/downloads/.


January 21, 2020

NetFlow Analytics for Splunk App 4.0.7 and Technology Add-on for NetFlow 4.0.7 Released

The NetFlow Logic team is pleased to announce the release of NetFlow Analytics for Splunk App 4.0.7 (https://splunkbase.splunk.com/app/489/) and Technology Add-on for NetFlow 4.0.7 (https://splunkbase.splunk.com/app/1838/).

Release Notes:
  • Main menu restructuring
  • Performance improvement
  • Added NFO drop-down for customers running multiple instances of NFO
  • Added dashboards for Cisco Application Visibility Control (AVC) to monitor Applications and Users
  • Changed Traffic by Protocol and Port to report traffic by destination port based on IANA specification https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml
  • Added dashboard to view Interface Utilization with Traffic by ports, source/destination, CBQoS
  • Added dashboards for Amazon AWS VPC Flow Logs
  • Bug fixes

To learn more about NetFlow Optimizer and Splunk integration click here.


Archive: [2019] [2018] [2017] [2016] [2015]