I-Cisco Secure Network Analytics
Umhlahlandlela Wokulungisa Imethrikhi Yempumelelo Yekhasimende 7.5.3
Kuphelileview
I-Customer Success Metrics inika amandla idatha ye-Cisco Secure Network Analytics (okwakuyiwashi le-Stealth) ukuthi ithunyelwe emafini ukuze sifinyelele ulwazi olubalulekile mayelana nokusetshenziswa, impilo, ukusebenza, nokusetshenziswa kwesistimu yakho.
- Inikwe amandla: I-Customer Success Metrics inikwa amandla ngokuzenzakalela ezintweni zakho zikagesi ze-Secure Network Analytics.
- Ukufinyelela I-inthanethi: Ukufinyelela ku-inthanethi kuyadingeka kumamethrikhi empumelelo yekhasimende.
- I-Cisco Security Service Exchange: I-Cisco Security Service Exchange inikwe amandla ngokuzenzakalelayo ku-v7.5.x futhi iyadingeka kumamethrikhi empumelelo yekhasimende.
- Idatha Files: I-Secure Network Analytics ikhiqiza i-JSON file ngedatha yamamethrikhi.
Idatha isuswa entweni ngokushesha ngemva kokuthunyelwa emafini.
Lo mhlahlandlela uhlanganisa ulwazi olulandelayo:
- Ukulungiselela i-Firewall: Lungiselela i-firewall yenethiwekhi yakho ukuze uvumele ukuxhumana kusuka ezinsizeni zakho kuya emafini. Bheka Ukulungiselela I-Firewall Yenethiwekhi.
- Ukukhubaza Amamethrikhi Empumelelo Yekhasimende: Ukuze uphume Kumamethrikhi Empumelelo Yekhasimende, bheka Ukukhubaza Amamethrikhi Empumelelo Yekhasimende.
- Amamethrikhi Empumelelo Yekhasimende: Ukuze uthole imininingwane mayelana namamethrikhi, bheka kudatha ye-Metrics Yempumelelo Yekhasimende.
Ukuze uthole ulwazi mayelana nokugcinwa kwedatha nendlela yokucela ukususwa kwamamethrikhi okusetshenziswa aqoqwe yi-Cisco, bheka I-Cisco Secure Network Analytics Privacy Data Sheet.
Ukuze uthole usizo, sicela uthinte i-Cisco Support.
Ilungiselela i-Network Firewall
Ukuze uvumele ukuxhumana kusuka ezimpahleni zakho zikagesi kuya emafini, lungiselela i-firewall yenethiwekhi yakho kumphathi wakho we-Cisco Secure Network Analytics (owayekade eyi-Stealth watch Management Console).
Qiniseka ukuthi ugesi wakho unokufinyelela ku-inthanethi.
Ilungiselela Umphathi
Lungiselela i-firewall yenethiwekhi yakho ukuze uvumele ukuxhumana kusuka kubaphathi bakho kuya kulawa makheli e-IP alandelayo kanye nembobo 443:
- api-sse.cisco.com
- est.sco.cisco.com
- mx*.sse.itd.cisco.com
- dex.sse.itd.cisco.com
- eventing-ingest.sse.itd.cisco.com
Uma i-DNS yomphakathi ingavunyelwe, qiniseka ukuthi ulungisa ukulungiswa endaweni kokuthi Abaphathi bakho.
Ikhubaza Amamethrikhi Empumelelo Yekhasimende
Sebenzisa imiyalelo elandelayo ukuze ukhubaze Amamethrikhi Empumelelo Yekhasimende kusisetshenziswa.
- Ngena kuMphathi wakho.
- Khetha okuthi Lungiselela > Umhlaba > Ukuphathwa Okumaphakathi.
- Chofoza u-
(Ellipsis) isithonjana somshini. Khetha Hlela Ukucushwa Kwensiza. - Chofoza ithebhu Okuvamile.
- Skrolela esigabeni Sezinsizakalo Zangaphandle.
- Susa ukumaka ibhokisi lokuhlola elithi Vumela Imethrikhi Yempumelelo Yekhasimende.
- Chofoza okuthi Sebenzisa Izilungiselelo.
- Landela imiyalo esesikrinini ukuze ulondoloze izinguquko zakho.
- Kuthebhu ye-Central Management Inventory, qinisekisa ukuthi Isimo Sensiza sibuyela kokuthi Okuxhunyiwe.
- Ukuze ukhubaze Amamethrikhi Empumelelo Yekhasimende kwesinye isisetshenziswa, phinda izinyathelo 3 kuya ku-9.
Idatha ye-Metrics Yempumelelo Yekhasimende
Uma ama-metrics empumelelo yekhasimende enikwe amandla, amamethrikhi aqoqwa kusistimu futhi alayishwe njalo emahoreni angama-24 emafini. Idatha isuswa entweni ngokushesha ngemva kokuthunyelwa emafini.
Asiqoqi idatha yokuhlonza njengamaqembu abasingathi, amakheli e-IP, amagama abasebenzisi, noma amagama ayimfihlo.
Ukuze uthole ulwazi mayelana nokugcinwa kwedatha nendlela yokucela ukususwa kwamamethrikhi okusetshenziswa aqoqwe yi-Cisco, bheka I-Cisco Secure Network Analytics Privacy Data Sheet.
Izinhlobo Zokuqoqwa
Imethrikhi ngayinye iqoqwa njengenye yezinhlobo zeqoqo ezilandelayo:
- Ukuqala Uhlelo Lokusebenza: Okukodwa okufakiwe njalo ngomzuzu ongu-1 (kuqoqa yonke idatha kusukela kuqale uhlelo).
- Okuhlanganisiwe: Okukodwa okufakiwe kwesikhathi samahora angama-24
- Isikhawu: Okufakiwe okukodwa njalo emizuzwini emi-5 (inani lama-288 afakiwe ngesikhathi samahora angama-24)
- Isifinyezo: Okukodwa okufakiwe kwephuzu ngesikhathi umbiko ukhiqizwa
Ezinye zezinhlobo zeqoqo ziqoqwa kumafrikhwensi ahlukene kunalezo ezimisiwe esizichaze lapha, noma zingase zilungiswe (kuya ngohlelo lokusebenza). Bheka Imininingwane Yemethrikhi ukuze uthole ulwazi olwengeziwe.
Imininingwane Yemethrikhi
Sifake kuhlu idatha eqoqiwe ngohlobo lwento kagesi. Sebenzisa u-Ctrl + F ukuze useshe amathebula ngegama elingukhiye.
Flow Collector
| I-Metric Identification | Incazelo | Iqoqo Uhlobo |
| device_cache.active | Inombolo yamakheli e-MAC asebenzayo asuka ku-ISE kunqolobane yamadivayisi. | Isifinyezo |
| device_ cache.deleted | Inombolo yamakheli e-MAC asusiwe ku-ISE kunqolobane yamadivayisi ngoba aphelelwe yisikhathi. | Okuqongelelwe |
| device_ cache.yehliwe | Inombolo yamakheli e-MAC awehlisiwe asuka ku-ISE ngoba inqolobane yamadivayisi igcwele. | Okuqongelelwe |
| device_cache.new | Inombolo yamakheli amasha e-MAC asuka ku-ISE engezwe kunqolobane yamadivayisi. | Okuqongelelwe |
| flow_stats.fps | Okuphumayo kugeleza ngesekhondi ngayinye ngomzuzu wokugcina. | Isikhawu |
| flow_stats.flows | Ukugeleza kwangaphakathi kucutshunguliwe. | Isikhawu |
| flow_cache.active | Inani lokugeleza okusebenzayo kunqolobane yokugeleza Koqoqo Olugelezayo. | Isifinyezo |
| i-flow_cache.yehlisiwe | Inani lokugeleza lehlile ngenxa yokuthi inqolobane yokugeleza Koqoqo Olugelezayo igcwele. | Okuqongelelwe |
| i-flow_cache.iphelile | Inombolo yokugeleza iphele kunqolobane yokugeleza Koqoqo Olugelezayo. | Isikhawu |
| flow_cache.max | Umkhawulo kasayizi wenqolobane yokugeleza Koqoqo Olugelezayo. | Isikhawu |
| flow_ cache.percentage | Iphesenti lomthamo wenqolobane yokugeleza Koqoqo Olugelezayo | Isikhawu |
| i-flow_cache.iqalile | Inani lokugeleza kwengezwe kunqolobane yokugeleza Koqoqo Olugelezayo. | Okuqongelelwe |
| hosts_cache.cached | Inombolo yabasingathi kunqolobane yomsingathi. | Isikhawu |
| i-hosts_cache.isusiwe | Inombolo yabasingathi esusiwe kunqolobane yosokhaya. | Okuqongelelwe |
| i-hosts_cache.yehlisiwe | Inani labasingathi lehlile ngenxa yokuthi inqolobane yosokhaya igcwele. | Okuqongelelwe |
| host_cache.max | Umkhawulo kasayizi wenqolobane yomsingathi. | Isikhawu |
| host_cache.new | Inombolo yabasingathi abasha engezwe kunqolobane yosokhaya. | Okuqongelelwe |
| host_ cache.percentage | Iphesenti lomthamo wenqolobane yomsingathi. | Isikhawu |
| i-hosts_ cache.probationary_ isusiwe | Inani labasingathi abahlolwayo* elisusiwe kunqolobane yabasingathi. *Abasingathi abangalindelekile bangabasingathi abangakaze babe umthombo wamaphakethe namabhayithi. Laba basokhaya basuswa kuqala lapho kuvuleka isikhala kunqolobane yomsingathi. |
Okuqongelelwe |
| interfaces.fps | Inombolo ephumayo yezibalo zokusebenzelana ngesekhondi ngayinye ethunyelwa ku-Vertica. | Isikhawu |
| security_events_ cache.active | Inombolo yemicimbi yokuvikela esebenzayo kunqolobane yemicimbi yezokuphepha. | Isifinyezo |
| security_events_ cache.yehlisiwe | Inombolo yemicimbi yezokuphepha yehlisiwe ngoba inqolobane yemicimbi yezokuphepha igcwele. | Okuqongelelwe |
| security_events_ cache.iphelile | Inombolo yemicimbi yokuphepha eqediwe kunqolobane yemicimbi yezokuphepha. | Okuqongelelwe |
| security_events_ cache.inserted | Inombolo yezehlakalo zokuphepha ezifakwe kuthebula lesizindalwazi. | Isikhawu |
| security_events_ cache.max | Umkhawulo kasayizi wenqolobane yemicimbi yokuvikeleka. | Isikhawu |
| security_events_ cache.percentage | Iphesenti lomthamo wenqolobane yemicimbi yezokuphepha. | Isikhawu |
| security_events_ cache.started | Inombolo yemicimbi yokuvikela eqalisiwe kunqolobane yemicimbi yezokuphepha. | Okuqongelelwe |
| session_cache.active | Inombolo yezikhathi ezisebenzayo ezivela ku-ISE kunqolobane yeseshini. | Isifinyezo |
| iseshini_ inqolobane.isusiwe | Inombolo yezikhathi ezisusiwe ku-ISE kunqolobane yeseshini. | Okuqongelelwe |
| iseshini_ inqolobane.yehliwe | Inani lezikhathi ezivela ku-ISE lehlile ngoba inqolobane yamaseshini igcwele. | Okuqongelelwe |
| session_cache.new | Inombolo yamaseshini amasha avela ku-ISE engezwe kunqolobane yeseshini. | Okuqongelelwe |
| users_cache.active | Inombolo yabasebenzisi abasebenzayo kunqolobane yabasebenzisi. | Isifinyezo |
| abasebenzisi_inqolobane.isusiwe | Inombolo yabasebenzisi abasusiwe kunqolobane yabasebenzisi ngoba baphelelwe yisikhathi. | Okuqongelelwe |
| user_cache.yehlisiwe | Inombolo yabasebenzisi yehlisiwe ngoba inqolobane yabasebenzisi igcwele. | Okuqongelelwe |
| users_cache.new | Inombolo yabasebenzisi abasha kunqolobane yabasebenzisi. | Okuqongelelwe |
| setha kabusha ihora | Ihora lokusetha kabusha le-Flow Collector. | N/A |
| vertica_stats.query_ duration_sec_min | Isikhathi esiphezulu sempendulo yombuzo. | Okuqongelelwe |
| vertica_stats.query_ duration_sec_min | Isikhathi esincane sokuphendula imibuzo. | Okuqongelelwe |
| vertica_stats.query_ duration_sec_avg | Isikhathi esimaphakathi sokuphendula umbuzo. | Okuqongelelwe |
| exporters.fc_count | Inombolo yabathekelisi nge-Flow Collector ngayinye. | Isikhawu |
Izibalo ze-FlowCollectorD
| I-Metric Identification | Incazelo | Iqoqo Uhlobo |
| ndr- agent.unprocessable_ ukuthola | Inombolo yemiphumela ye-NDR ethathwa njengengacutshungulwe. | Ukuqongelela kusulwa nsuku zonke |
| ndr-agent.ownership_ registration_yehlulekile | Imininingwane yobuchwepheshe: Inombolo yohlobo oluthile lwamaphutha enzeke ngesikhathi sokucubungula i-NDR. | Ukuqongelela kusulwa nsuku zonke |
| ndr-agent.upload_ impumelelo | Inombolo yokutholwa kwe-NDR okucutshungulwe ngempumelelo umenzeli. | Ukuqongelela kusulwa nsuku zonke |
| ukwehluleka kwe-ndr-agent.upload_ | Inani lokutholwe kwe-NDR elilayishwe ngempumelelo umenzeli. | Ukuqongelela kusulwa nsuku zonke |
| ndr-agent.processing_ ukwehluleka | Inombolo yokwehluleka okubonwe ngesikhathi sokucubungula i-NDR. | Ukuqongelela kusulwa nsuku zonke |
| ndr-agent.processing_ impumelelo | Inombolo yokutholwe ngempumelelo kwe-NDR. | Ukuqongelela kusulwa nsuku zonke |
| ndr-agent.old_file_ susa | Inombolo ye files isusiwe ngenxa yokuthi indala kakhulu. | Ukuqongelela kusulwa nsuku zonke |
| ndr-agent.old_ registration_delete | Inombolo yokubhaliswa kobunikazi ehoxisiwe ngenxa yokuthi indala kakhulu. | Ukuqongelela kusulwa nsuku zonke |
| i-netflow | Isamba samarekhodi e-NetFlow avela kubo bonke abathumeli be-Netflow. Kufaka phakathi amarekhodi e-NVM. | Ukuqongelela kusulwa nsuku zonke |
| fs_netflow | Amarekhodi e-Netflow atholwe ku-Flow Sensors kuphela. | Ukuqongelela kusulwa nsuku zonke |
| netflow_bytes | Isamba samabhayithi e-NetFlow atholwe kunoma yimuphi umthumeli we-NetFlow. Kufaka phakathi amarekhodi e-NVM. | Ukuqongelela kusulwa nsuku zonke |
| fs_netflow_bytes | Amabhayithi e-NetFlow atholwe ku-Flow Sensors kuphela. | Ukuqongelela kusulwa nsuku zonke |
| ukugeleza | Amarekhodi e-sFlow atholwe kunoma yimuphi umthengisi we-sFlow. | Ukuqongelela kusulwa nsuku zonke |
| sflow_bytes | Amabhayithi e-sFlow atholwe kunoma yimuphi umthumeli ngaphandle we-sFlow. | Ukuqongelela kusulwa nsuku zonke |
| nvm_endpoint | Amaphoyinti okugcina e-NVM abonwa namuhla (ngaphambi kokusetha kabusha kwansuku zonke). | Ukuqongelela kusulwa nsuku zonke |
| nvm_bytes | Amabhayithi e-NVM atholiwe (okuhlanganisa ukugeleza, indawo yokugcina, namarekhodi e-endpoint_interface). | Ukuqongelela kusulwa nsuku zonke |
| nvm_netflow | Amabhayithi e-NVM atholiwe (okuhlanganisa ukugeleza, indawo yokugcina, namarekhodi e-endpoint_interface). | Ukuqongelela kusulwa nsuku zonke |
| wonke_sal_umcimbi | Yonke imicimbi ye-Security Analytics and Logging (OnPrem) yamukelwe (okuhlanganisa Isisetshenziswa Sokuvikela Esishintshashintshayo kanye Nesisetshenziswa Sokuvikela esingaguquki), kubalwa ngenani lemicimbi etholiwe. | Ukuqongelela kusulwa nsuku zonke |
| wonke_sal_bytes | Zonke Izibalo Zokuphepha Nokuloga (OnPrem) | Okuqongelelwe |
| izehlakalo ezitholiwe (okuhlanganisa Isisetshenziswa Sokuvikela Esishintshashintshayo kanye Nesisetshenziswa Sokuvikela esingaguquki, sibalwa ngenani lamabhayithi atholiwe. | kusulwe nsuku zonke | |
| ftd_sal_event | Imicimbi Yezibalo Zokuvikela Nokuloga (OnPrem) (Insiza Yokuphepha Engaguquki) etholwe kumadivayisi e-Firepower Threat Defense/NGIPS kuphela. | Ukuqongelela kusulwa nsuku zonke |
| ftd_sal_bytes | Izibalo Zokuvikela Nokuloga (OnPrem) (Insiza Yokuphepha Engaguquki) itholwe kusukela kumadivayisi e-Firepower Threat Defense/NGIPS kuphela. | Ukuqongelela kusulwa nsuku zonke |
| ftd_lina_bytes | Amabhayithi e-Data Plane atholwe kumadivayisi e-Firepower Threat Defense kuphela. | Ukuqongelela kusulwa nsuku zonke |
| ftd_lina_umcimbi | Imicimbi Yeplanethi Yedatha itholwe kumadivayisi e-Firepower Threat Defense kuphela. | Ukuqongelela kusulwa nsuku zonke |
| asa_asa_isehlakalo | Imicimbi ye-Adaptive Security Appliance itholwe kumadivayisi e-Adaptive Security Appliance kuphela. | Ukuqongelela kusulwa nsuku zonke |
| asa_asa_bytes | Amabhayithi e-ASA atholwe kumadivayisi e-Adaptive Security Appliance kuphela. | Ukuqongelela kusulwa nsuku zonke |
Umphathi
| I-Metric Identification | Incazelo | Iqoqo Uhlobo |
| exporter_cleaner_ cleaning_enabled | Ibonisa ukuthi i-Interfaces Engasebenzi kanye Nesicoci Sabathekelisa sivuliwe yini. | Isifinyezo |
| exporter_cleaner_ inactive_threshold | Inombolo yamahora umthumeli ngaphandle angakwazi ukusebenza ngaphambi kokuthi asuswe. | Isifinyezo |
| exporter_cleaner_ usebenzisa_legacy_cleaner | Ibonisa ukuthi uMhlanzi kufanele yini asebenzise umsebenzi wokuhlanza wefa. | Isifinyezo |
| exporter_cleaner_ hours_after_reset | Inombolo yamahora ngemva kokusetha kabusha isizinda okufanele sihlanzwe. | Isifinyezo |
| exporter_cleaner_ interface_without_ status_presumed_ stale | Ibonisa ukuthi ingabe Isicoci siyazisusa yini izixhumi ezibonakalayo ebezingaziwa Umqoqi Ogelezayo ngehora lokugcina lokusetha kabusha, sizithathe njengezingasebenzi. | Isifinyezo |
| ndrcoordinator.files_ kulayishiwe | Ibonisa ukuthi ingabe ukusetshenziswa kwe-Secure Network Analytics kusebenza njengeSitolo Sedatha. | Isifinyezo |
| umbiko_uqedile | Igama lombiko kanye nesikhathi sokusebenza ngama-millisecond (Umphathi kuphela). | N/A |
| umbiko_izimiso | Izihlungi ezisetshenziswa lapho Umphathi ebuza imininingo egciniwe Yokuqoqwa Okugelezayo. Idatha ithunyelwe ngombuzo ngamunye: inombolo enkulu yemigqa faka ifulegi le-interface-data ifulegi lombuzo osheshayo ifulegi elingabaliwe ugeleza izihlungi isiqondiso ngokulandelana ngekholomu ifulegi lamakholomu azenzakalelayo Idethi nesikhathi sokuqala kwewindi lesikhathi Idethi yokuphela kwewindi lesikhathi nesikhathi Inombolo yemibandela yomazisi bedivayisi Inombolo yemibandela ye-id yesixhumi esibonakalayo Inombolo yemibandela ye-IPs Inombolo yemibandela yobubanzi be-IP Inombolo yemibandela yamaqembu okusingatha Inombolo yemibandela yokubhanqa kwabasingathi Ukuthi imiphumela ihlungwa ngamakheli e-MAC Ukuthi imiphumela ihlungwa ngezimbobo ze-TCP/UDP Inombolo yemibandela yamagama abasebenzisi Ukuthi imiphumela ihlungwa ngenani lamabhayithi/amaphakethe Ukuthi imiphumela ihlungwa ngenani eliphelele lamabhayithi/amaphakethe Ukuthi imiphumela ihlungwa ngokuthi URL Ukuthi imiphumela ihlungwa ngamaphrothokholi Ukuthi imiphumela ihlungwa ngama-id wezinhlelo zokusebenza Ukuthi imiphumela ihlungwa ngegama lenqubo Ukuthi imiphumela ihlungwa nge-process hash Ukuthi imiphumela ihlungwa ngenguqulo ye-TLS Inombolo yama-cipher ku-cipher suite criteria |
Isifinyezo Imvamisa: Ngesicelo ngasinye |
| domain.integration_ ad_count | Inombolo yoxhumo lwe-AD. | Okuqongelelwe |
| domain.rpe_count | Inani lezinqubomgomo zendima ezilungisiwe. | Okuqongelelwe |
| isizinda.hg_changes_ count | Izinguquko ekucushweni Kweqembu Lokusingatha. | Okuqongelelwe |
| integration_snmp | Ukusetshenziswa komenzeli we-SNMP. | N/A |
| ukuhlanganiswa_kokuqonda | Izexwayiso ezisongela umhlaba wonke (okwakukade kuyi-Cognitive Intelligence) ukuhlanganiswa kunikwe amandla. | N/A |
| domain.services | Inombolo yezinsizakalo ezichaziwe. | Isifinyezo |
| ukubala_okuzenzakalelayo_ kwezinhlelo zokusebenza | Inombolo yezinhlelo zokusebenza echaziwe. | Isifinyezo |
| smc_users_count | Inombolo yabasebenzisi ku- Web Uhlelo lokusebenza. | Isifinyezo |
| login_api_count | Inombolo yokungena ngemvume kwe-API. | Okuqongelelwe |
| login_ui_count | Inombolo ye Web Ukungena ngemvume kohlelo lokusebenza. | Okuqongelelwe |
| report_concurrency | Inombolo yemibiko esebenza kanyekanye. | Okuqongelelwe |
| i-apicall_ui_count | Inombolo yamakholi we-Manager API asebenzisa i- Web Uhlelo lokusebenza. | Okuqongelelwe |
| i-apicall_api_count | Inombolo yamakholi we-Manager API kusetshenziswa i-API. | Okuqongelelwe |
| ctr.inikwe amandla | Impendulo yosongo ye-Cisco SecureX(ngaphambilini ebiyi-Cisco Threat Response) inikwe amandla. | N/A |
| I-ctr.alarm_sender_ inikwe amandla | Vikela ama-alamu e-Network Analytics kumpendulo yokusongelwa kwe-SecureX anikwe amandla. | N/A |
| ctr.alarm_sender_ minimal_severity | Ubukhulu obuncane bama-alamu athunyelwe kumpendulo yosongo ye-SecureX. | N/A |
| I-ctr.enrichment_ inikwe amandla | Isicelo sokucebisa esivela kumpendulo yokusongelwa kwe-SecureX sinikwe amandla. | N/A |
| ctr.enrichment_limit | Inombolo Yemicimbi Yokuphepha ephezulu ezobuyiselwa empendulweni yokusongelwa kwe-SecureX. | Okuqongelelwe |
| ctr.enrichment_period | Isikhathi sokuthi Imicimbi Yokuphepha ibuyiselwe kumpendulo yokusongelwa kwe-SecureX. | Okuqongelelwe |
| ctr.number_of_ enrichment_requests | Inombolo yezicelo zokucebisa ezitholwe empendulweni yokusongelwa kwe-SecureX. | Okuqongelelwe |
| ctr.number_of_refer_ izicelo | Inombolo yezicelo zesixhumanisi se-pivot yoMphathi etholwe empendulweni yokusongelwa kwe-SecureX. | Okuqongelelwe |
| ctr.xdr_number_of_ alamu | Isibalo sansuku zonke sama-alamu athunyelwa ku-XDR. | Okuqongelelwe |
| ctr.xdr_number_of_ izexwayiso | Inani lansuku zonke lezaziso ezithunyelwa ku-XDR. | Okuqongelelwe |
| ctr.xdr_sender_ inikwe amandla | Iqiniso/Amanga uma ukuthumela kunikwe amandla. | Isifinyezo |
| indima_yehluleka | Umphathi wendima eyinhloko noma yesibili ehlulekayo ku-cluster. | N/A |
| domain.cse_count | Inombolo yemicimbi yokuvikela yangokwezifiso ye-ID yesizinda. | Isifinyezo |
Izibalo zomphathiD
| I-Metric Identification | Incazelo | Uhlobo Lweqoqo |
| I-ndrcoordinator.analytics_ inikwe amandla | Imaka ukuthi i-Analytics ivuliwe yini. 1 uma yebo, 0 uma cha. | Isifinyezo |
| ndrcoordinator.agents_ kuthintwayo | Inombolo yabasebenzeli be-NDR abathintwe ngesikhathi sokuxhumana kokugcina. | Isifinyezo |
| ndrcoordinator.processing_ amaphutha | Inombolo yamaphutha ngesikhathi sokucubungula i-NDR. | Okuqongelelwe |
| ndrcoordinator.files_ kulayishiwe | Inombolo yemiphumela ye-NDR elayishiwe ukuze icutshungulwe. | Okuqongelelwe |
| ndrevents.processing_errors | Inombolo ye files yehlulekile ukucubungula ngenxa yokuthi isistimu ayizange ilethe okutholiwe noma ayikwazanga ukuhlaziya isicelo. | Okuqongelelwe |
| ndrevents.files_kulayishiwe | Inombolo ye fileezithunyelwe emicimbini ye-NDR ukuze zicutshungulwe. | Okuqongelelwe |
| sna_swing_client_life | Isibali sangaphakathi samakholi we-API asetshenziswa iklayenti le-SNA Manager Desktop. | Isifinyezo |
| I-swrm_iyasetshenziswa | Ukuphathwa Kwempendulo: Inani ngu-1 uma Ukuphathwa Kwempendulo kusetshenziswa. Inani lingu-0 uma lingasetshenziswa. | Isifinyezo |
| imithetho_ye-swrm | Ukuphathwa Kwempendulo: Inombolo yemithetho yangokwezifiso. | Isifinyezo |
| swrm_action_imeyili | Ukuphathwa Kwempendulo: Inombolo yezenzo zangokwezifiso zohlobo lwe-imeyili. | Isifinyezo |
| swrm_action_syslog_ umyalezo | Ukuphathwa Kwempendulo: Inombolo yezenzo zangokwezifiso zohlobo lomlayezo we-Syslog. | Isifinyezo |
| swrm_action_snmp_trap | Ukuphathwa Kwezimpendulo: Inombolo yezenzo zangokwezifiso zohlobo lwe-SNMP Trap. | Isifinyezo |
| swrm_action_ise_anc | Ukuphathwa Kwezimpendulo: Inombolo yezenzo zangokwezifiso zohlobo lweNqubomgomo ye-ISE ANC. | Isifinyezo |
| i-swrm_action_webihuku | Ukuphathwa Kwezimpendulo: Inombolo yezenzo zangokwezifiso ze Webuhlobo lwehhuku. | Isifinyezo |
| swrm_action_ctr | Ukuphathwa Kwezimpendulo: Inombolo yezenzo zangokwezifiso zokusabela ngokusongela Uhlobo lwesigameko. | Isifinyezo |
| va_ct | Ukuhlola Ukubonakala: Isikhathi sokugijima esibaliwe ngama-millisecond. | Isifinyezo |
| va_ce | Ukuhlola Ukubonakala: Inombolo yamaphutha (uma isibalo siphahlazeka). | Isifinyezo |
| va_hcs | Ukuhlola Ukubonakala: Usayizi wempendulo ye-API yesibalo sosokhaya ngamabhayithi (thola usayizi wokuphendula oweqile). | Isifinyezo |
| va_ss | Ukuhlola Ukubonakala: Usayizi wempendulo ye-Scanners API ngamabhayithi (thola usayizi wokuphendula oweqile). | Isifinyezo |
| ama_izi | Ukuhlola Ukubonakala: Usayizi wokuphendula we-API Yemicimbi Yokuphepha ngamabhayithi (thola usayizi wokuphendula oweqile). | Isifinyezo |
| sal_input_size | Inombolo yokungenela kulayini wokufakwayo wepayipi. | Imvamisa yesifinyezo: iminithi elingu-1 |
| u-sal_completed_size | Inani lokufakiwe kumugqa wenqwaba oqediwe. | Imvamisa yesifinyezo: iminithi elingu-1 |
| sal_flush_time | Inani lesikhathi kuma-millisecond kusukela ekuguqeni kwepayipi lokugcina. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesifinyezo: iminithi elingu-1 |
| u-sal_batches_aphumelele | Inani lamaqoqo abhalwe ngempumelelo ku- file. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| sal_batches_cutshunguliwe | Inani lamaqoqo acutshunguliwe. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| i-sal_batches_yehlulekile | Inani lamaqoqo ahlulekile ukuqedela ukubhala ku- file. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| sal_files_isusiwe | Inombolo ye files ihanjiswe kuhla lwemibhalo olulungile. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| sal_files_yehlulekile | Inombolo ye fileehlulekile ukususwa. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| sal_files_kulahliwe | Inombolo ye files kulahliwe ngenxa yephutha. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| imigqa_ebhaliwe_ebhaliwe | Inombolo yemigqa ebhalwe kwabaqondisiwe file. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| imigqa_ecutshunguliwe | Inombolo yemigqa ecutshunguliwe. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| i-sal_rows_yehlulekile | Inombolo yemigqa ehlulekile ukubhalwa. Itholakala nge-Security Analytics kanye | Imvamisa yesikhawu: |
| i-sal_total_batches_ iphumelele | Isamba senani lamaqoqo abhalwe ngempumelelo ku- file. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| i-sal_total_batches_ icutshunguliwe | Isamba senani lamaqoqo acutshunguliwe. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| i-sal_total_batches_yehlulekile | Inani lenombolo fileabahlulekile ukuqedela ukubhala ku file. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| sal_total_files_isusiwe | Inani lenombolo files ihanjiswe kuhla lwemibhalo olulungile. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| sal_total_files_yehlulekile | Inani lenombolo fileehlulekile ukususwa. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| sal_total_files_kulahliwe | Inani lenombolo files kulahliwe ngenxa yephutha. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| imigqa_ephelele_ebhaliwe | Isamba senani lemigqa ebhalwe kwereferensi file. Itholakala nge-Security Analytics kanye | Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| Ukuloga (OnPrem) Indawo eyodwa kuphela. | ||
| i-sal_total_rows_processed | Inani lenombolo yemigqa ecutshunguliwe. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| i-sal_total_rows_yehlulekile | Isamba senani lemigqa ehlulekile ukubhalwa. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| sal_transformer_ | Inombolo yamaphutha okuguqulwa kule transformer. Itholakala nge-Security Analytics kanye nokuloga (OnPrem) i-Single-node kuphela. |
Imvamisa yesikhawu: iminithi elingu-1 |
| sal_bytes_per_event | Isilinganiso senani lamabhayithi ngomcimbi ngamunye owamukelwe. | Imvamisa yesikhawu: iminithi elingu-1 |
| sal_bytes_received | Inombolo yamabhayithi atholwe kuseva ye-UDP. | Imvamisa yesikhawu: iminithi elingu-1 |
| sal_events_received | Inombolo yemicimbi etholwe kuseva ye-UDP. | Imvamisa yesikhawu: iminithi elingu-1 |
| sal_total_events_received | Isamba senani lemicimbi etholwe umzila. | Ukuqala Uhlelo Lokusebenza |
| i-sal_events_yehlile | Inombolo yemicimbi engahlukaniseki yehlisiwe. | Imvamisa yesikhawu: iminithi elingu-1 |
| i-sal_total_events_yehlile | Isamba senani lemicimbi engahlukaniseki lehlile. | Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| I-sal_events_azinakanga | Inombolo yemicimbi enganakiwe/engasekelwe. | Imvamisa yesikhawu: iminithi elingu-1 |
| i-sal_total_events_azinakanga | Isamba senani lemicimbi enganakiwe/engasekelwe. | Imvamisa Yokuqalisa Uhlelo Lokusebenza: iminithi elingu-1 |
| sal_receive_queue_size | Inombolo yemicimbi kulayini wokwamukela. | Imvamisa yesifinyezo: iminithi elingu-1 |
| sal_imicimbi_ngomzuzwana | Izinga lokungenisa (imicimbi ngomzuzwana). | Imvamisa yesikhawu: iminithi elingu-1 |
| sal_bytes_per_sekhondi | Izinga lokungenisa (amabhayithi ngomzuzwana). | Imvamisa yesikhawu: iminithi elingu-1 |
| sna_trustsec_report_runs | Inombolo yezicelo zemibiko yansuku zonke ye-TrustSec. | Okuqongelelwe |
Umqondisi we-UDP
| I-Metric Identification | Incazelo | Iqoqo Uhlobo |
| sources_count | Inombolo yemithombo. | Isifinyezo |
| imithetho_ukubala | Inombolo yemithetho. | Isifinyezo |
| amaphakethe_angenakuqhathaniswa | Ubuningi bamaphakethe angenakuqhathaniswa. | Isifinyezo |
| amaphakethe_awisiwe | Amaphakethe alahliwe eth0. | Isifinyezo |
Zonke Izinsiza
| I-Metric Identification | Incazelo | Iqoqo Uhlobo |
| ifomu leplatifomu | Inkundla yezingxenyekazi zekhompuyutha (isb: Dell 13G, KVM Virtual Platform). | N/A |
| i-serial | Inombolo yomkhiqizo wohlelo lokusebenza. | N/A |
| inguqulo | Vikela inombolo yenguqulo ye-Network Analytics (isb: 7.1.0). | N/A |
| inguqulo_yakha | Inombolo yokwakha (isb: 2018.07.16.2249-0). | N/A |
| version_patch | Inombolo yepheshi. | N/A |
| csm_version | Inguqulo yekhodi ye-Metrics Yempumelelo Yekhasimende (isb: 1.0.24-SNAPSHOT). | N/A |
| power_supply.status | Izibalo zokuphakelwa kwamandla koMphathi kanye ne-Flow Collector. | Isifinyezo |
| productInstanceName | Isihlonzi somkhiqizo Welayisense Ehlakaniphile. | N/A |
Ixhumana Nosekelo
Uma udinga ukwesekwa kobuchwepheshe, sicela wenze okukodwa kokulandelayo:
- Xhumana ne-Cisco Partner yangakini
- Xhumana ne-Cisco Support
- Ukuvula icala ngo web: http://www.cisco.com/c/en/us/support/index.html
- Ngosekelo lwefoni: 1-800-553-2447 (US)
- Ngezinombolo zosekelo zomhlaba wonke: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html
Shintsha Umlando
| Inguqulo Yedokhumenti | Usuku Lokushicilela | Incazelo |
| 1_0 | Agasti 18, 2025 | Inguqulo yokuqala. |
Ulwazi Lwelungelo Lobunikazi
I-Cisco kanye nelogo ye-Cisco yizimpawu zokuthengisa noma izimpawu zokuthengisa ezibhalisiwe ze-Cisco kanye/noma izinhlaka zayo e-US nakwamanye amazwe. Kuya view uhlu lwezimpawu zokuthengisa ze-Cisco, hamba kulokhu URL: https://www.cisco.com/go/trademarks. Izimpawu zokuthengisa zezinkampani zangaphandle ezishiwo ziyimpahla yabanikazi bazo. Ukusetshenziswa kwegama elithi uzakwethu akusho ubudlelwano bokusebenzisana phakathi kweCisco nanoma iyiphi enye inkampani. (1721R)
© 2025 Cisco Systems, Inc. kanye/noma amanxusa ayo.
Wonke Amalungelo Agodliwe.
Amadokhumenti / Izinsiza
 |
I-Cisco Secure Network Analytics [pdf] Umhlahlandlela Womsebenzisi v7.5.3, Izibalo Zenethiwekhi Ezivikelekile, Izibalo Zenethiwekhi Evikelekile, Izibalo Zenethiwekhi, Izibalo |
 |
I-CISCO Secure Network Analytics [pdf] Umhlahlandlela Womsebenzisi UCS C-Series M5, Manager 2210, Data Node 6200, Flow Collector 4210, Flow Collector 5210, Engine Flow Collector 5210 Database, Flow Sensor 1210, Flow Sensor 3210, Flow Sensor 42010, Umqondisi 2 Inzwa 4210, 42 Umqondisi we-DP Izibalo Zenethiwekhi, Izibalo Zenethiwekhi, Izibalo |
 |
I-CISCO Secure Network Analytics [pdf] Umhlahlandlela Womsebenzisi UCS C-Series M6, Manager 2210, Data Node 6200, Flow Collector 4210, Flow Collector 5210, Engine Flow Collector 5210 Database, Flow Sensor 1210, Flow Sensor 3210, Flow Sensor 42010, Umqondisi 2 Inzwa 4210, 42 Umqondisi we-DP Izibalo Zenethiwekhi, Izibalo Zenethiwekhi, Izibalo |
 |
Cisco Secure Network Analytics [pdf] Umhlahlandlela Womsebenzisi Vikela Izibalo Zenethiwekhi, Izibalo Zenethiwekhi, Izibalo |
 |
Cisco Secure Network Analytics [pdf] Umhlahlandlela Womsebenzisi 7.5.3, DV 1.0, Secure Network Analytics, Network Analytics, Analytics |
 |
Cisco Secure Network Analytics [pdf] Umhlahlandlela Womsebenzisi v7.5.3, Izibalo Zenethiwekhi Ezivikelekile, Izibalo Zenethiwekhi, Izibalo |
 |
I-CISCO Secure Network Analytics [pdf] Umhlahlandlela Womsebenzisi v7.5.3, Izibalo Zenethiwekhi Ezivikelekile, Izibalo Zenethiwekhi, Izibalo |