Difficulties of Network Monitoring

827 Words4 Pages
Network traffic monitoring is a way for companies, to meet there network performances, security, and network goals. There are different challenges that can be challenging when you implement network trafficking monitoring software. Network monitoring software can create difficulties in creating network baselines and strategies privacy confidentiality. There are many challenges to monitoring your company’s network; the two limitations I choose are Network baselines and Knowledge management. Why are network baselines a challenge? These challenges are simplistic approaches that use a lot of bandwidth utilization over time. They focus on spikes in the bandwidth; they try to describe traffic in terms of protocols and port numbers. There is no single accepted taxonomy for creating a network baseline. Knowledge management is another technique and tool to monitor network data. The network analyst is the one who is responsible for the knowledge of this information. The analyst captures that knowledge by adding simple tags to the network flow, this can be difficult, but the analyst should have a way to annotate network information for the network team. It is hard to run these tools and try to keep the confidentiality and privacy of the company because whatever network tools you use it assumes the user has full privileges, what this means is that when you run these tools you may have limited privileges on the network, but since you are running the monitoring tool is assumes you have full privileges. Part B: Scenarios: 1. You are investigating a compromised system. The intruder damaged important storage volumes and you have to work from is a file fragment. Which tool or method is best for your use to investigate the evidence? File carver 2. An intruder is identified on the network and is remotely controlling a system. You are granted permission to
Open Document