Plixer Scrutinizer terms and concepts

Alarm Policy

Rule sets that define what types of network behavior or activity should be monitored as Events and trigger Alarms

Flow Analytics

A library of field-tested algorithms used to analyze network behavior, detect unexpected activity, and report Events and Alarms

IPFIXify

A software agent that reads text-based logs, syslog messages, Windows EventLogs and various other types of data sources and sends the information in flows using the IPFIX protocol

Plixer ML Engine

The core module behind PSI and PNI that is designed to to ingest and process extremely large volumes of flow data

Plixer Network Intelligence (PNI)

A machine-learning-powered add-on component for Plixer Scrutinizer that analyzes collected flow data to identify utilization trends, streamline investigative workflows, and predict future capacity needs

Plixer Security Intelligence (PSI) A machine-learning-powered add-on component for Plixer Scrutinizer that ingests and interrogates collected flow data to automatically detect and report potential security threats

Protocol Exclusions

Defines protocols to exclude during the collection process per Exporter, Exporter interface, and/or all Exporters and interfaces

Reverse-Path Filtering Allows Collectors to receive non-local traffic that may have been forwarded by a proxy or flow replication solution, such as Plixer Replicator

SAF (Summary and Forensic)

An optimized system of storing flow data that uses summary tables to condense collected information without compromising transparency or accuracy

TI (Threat Index)

A single value comprised of events with different weights that age out over time