Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Traffic collection via VPN-tunnel (jflow or (R)SPAN))

SOLVED
Go to solution
Mathias1990_
Occasional Contributor
‎07-15-2014 12:59:AM
‎07-15-2014 12:59:AM

Traffic collection via VPN-tunnel (jflow or (R)SPAN))

Hi

 

First of all, I'm not sure if this is the right place to post. I apology if I should have posted elsewhere.

I'm playing a bit with a design of an HQ with Juniper UAC and Endpoint Profiler. The endpoint profiler should profile devices at my branch and the Juniper UAC be used for VLAN-assignment etc. based on the chosen profile.

I have various options to collect the data centrally. DHCP is one thing. The DHCP-traffic can be forwarded from my branches by relaying it to the central EP via VPN.

 

If I need to profile based on things like port numbers, I would need to have my branch traffic forwarded to the HQ to be watched by Endpoint Profiler - either the NetWatch or NetRelay module.

 

Is there any limitation as to having Netflow / jflow data exported via VPN (would prefer this over exporting the data directly via internet). For example with Juniper SRX / EX switches but potentially also with switches or firewalls from other vendors like Cisco.

Could also setup some kind of TAP / SPAN but then I wouldn't have the sampling benefits of the flow technologies.

 

Any ideas?

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
kalagesan_
Super Contributor
‎07-16-2014 09:28:PM
‎07-16-2014 09:28:PM

Re: Traffic collection via VPN-tunnel (jflow or (R)SPAN))

Hi Mathias,

 

Thanks for your update.

 

Since the beacon profiler is not with you and its still inpredeployment stage, work with Juniper SE on this to understand the possibility.

 

Hope this helps

Regards,

Kannan

View solution in original post

0 Kudos
5 REPLIES 5
kalagesan_
Super Contributor
‎07-15-2014 11:51:PM
‎07-15-2014 11:51:PM

Re: Traffic collection via VPN-tunnel (jflow or (R)SPAN))

Hi Mathias,

 

I understand your requirement.

 

I also believe that your requirement should be possible using UAC and Beacon Endpoint MAG SM360 profiler solution. I have seen customers profiling based onport numbers, mac address etc.

 

However I recommend you to work with Juniper support  on this since its needs confirmation from GreatBay support who are the OEM vendor for this profiler device.

 

Hope this should resolve your query.

 

Note: If I have answered your questions, you could mark this post as accepted solution, that way it could help others as well. Kudo will be a bonus thanks!

 

Regards,
Kannan

0 Kudos
Mathias1990_
Occasional Contributor
‎07-16-2014 12:22:AM
‎07-16-2014 12:22:AM

Re: Traffic collection via VPN-tunnel (jflow or (R)SPAN))

Thanks for the reply.

Would this be JTAC or an SE?

See this is still on the draw board, so the hardware is yet to be bought.

0 Kudos
kalagesan_
Super Contributor
‎07-16-2014 09:28:PM
‎07-16-2014 09:28:PM

Re: Traffic collection via VPN-tunnel (jflow or (R)SPAN))

Hi Mathias,

 

Thanks for your update.

 

Since the beacon profiler is not with you and its still inpredeployment stage, work with Juniper SE on this to understand the possibility.

 

Hope this helps

Regards,

Kannan

0 Kudos
Mathias1990_
Occasional Contributor
‎07-17-2014 06:46:AM
‎07-17-2014 06:46:AM

Re: Traffic collection via VPN-tunnel (jflow or (R)SPAN))

Hi Kalagesan

Thanks for the reply. I will work with our SE to find the right solution for the customer.

0 Kudos
kalagesan_
Super Contributor
‎07-17-2014 08:35:PM
‎07-17-2014 08:35:PM

Re: Traffic collection via VPN-tunnel (jflow or (R)SPAN))

Thanks for the update mathias

Regards,

Kannan

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.