LAN-Experts
give you full advantage of sophisticated expert systems of LAN/WAN analysis. Customers do
not need to get through so-called trace files manually any longer. Trace file analysis is
done by automatic expert systems, even with multiple GB of measurement data. Network
physical errors, address schemes, domain structures (AD/DNS), client-server applications
are covered .. and yet more.
Analysis
Optimal analysis results require that trace files (capture files) are created properly. Configuring the capture job may be tricky under certain conditions. Choosing the trace point and setting up the mirror port on a LAN switch may cause unappropriate capture files: contents of the captured data streams may be wrong, or the format may be wrong. LAN-Experts therefore use
TraceCommander's Capture Wizard for setting up the capture job,
MintMagic for first-sight analysis during online operation,
TraceMagic for in-depth analysis of the captured network traffic.
To make sure that setting up the capture job is well-done, we support our customers, and partners, by online video sessions via SYNvideo.
Trace file analysis will be performed by MintMagic and TraceMagic and will cover the subjects listed above:
Symptoms:
"the network is slow"
Lost sessions / session aborts
Logon problems
WAN problems
Application problems
Physical/MAC
Data throughput / network load
Spanning Tree
duplicate MAC adresses / corrupted MAC addresses
Packet loss / corrupted packets / transmission errors
Problems related to adapter teaming
Problems related to load balancing
ARP
Adress resolution errors
Corrupted source addresses
Duplicate adresses
IP Routing
Routing problems / WAN problems
Route changes within LAN and/or WAN, e.g. in load balancing environments
IP helper problems / router configuration errors
IP Hosts
duplicate IP addresses
Wrong IP subnet mask
IP address range attacks
TCP
Packet loss / retransmissions
TCP window size problems
TCP session errors (denials, half-open, resets)
TCP port scan attacks
TCP ping-pong mode (rather than burst mode)
DHCP
Parameter problems
IP helper problems
Relay-agent problems
Name Services
NetBIOS: tables/lists of names/addresses
MasterBrowser - availability problems
WINS - IP helper problems
WINS - address resolution problems
DNS - address resolution problems
DNS - active directory problems
DNS - forwarding loops
DNS - security problems
Domain Services
Kerberos authentication failures
DNS forest/tree structure problems
LDAP / Active Directory
NDS / Netware Directory Service
Windows
Client-Server incompatibilities
Migration problems (unconsolidated environments)
Logon timeouts
Authentication handshake problems
Access problems (shares, data, printers)
Detection of inconsistent domain structures
Explorer problems
Terminal servers / Citrix servers
Server configuration errors
Client configuration errors
Client overload / ressource problems
Printing
Printing problems
migration-related timeouts
Mail
Mail access too slow
MS-Outlook session problems
Spam problems
HTTP
Session logs
Proxy server security checks
Reverse-proxy applikations problems
Malware problems
Security
Security holes / security problems
Intruder detection
Malware detection
DNS security checks
DMZ monitoring
Performance of Offline Analysis
multiple millions of LAN packets can be processed, spanning over multiple thousands of trace files
specific LAN packets or data streams can be isolated and analyzed by filters (MAC address, IP address, TCP port, payload patterns)
expert system reports may cover more than 200 symptoms or errors