Generally, GenieATM 2320 Series collects IP flow information from core routing switches of the backbone network and routers which connect to external network and are commonly applied to Transit Traffic Analysis,Peering Traffic Analysis, and Inspection for Routing Load Balance Analysis.

• Appliance Architecture: Ease of system set-up and configurations. All modules integrated in one box which could perform all functions independently. No any extra hardware or software is required.
• Long-term Traffic Monitor:Network-wide traffic monitor and in-depth analysis are enabled by “rule-based” analysis capability. Except filters figured with various analysis criteria (IP addr., IP blocks, interfaces) to monitor network traffic in longer term, further filter combinations are also available through “And-Or-Not” logic computing.
• SNMP-based Traffic: Except for flow-based traffic monitoring which count on NetFlow/NetStream/
  sFlow packets which are exported from routers, users can also adapt the SNMP-based traffic monitoring to poll specific interfaces on which NetFlow/NetStream/sFlow were not enabled.
• Two-level Threshold Alarm: Two-level threshold alarms mechanism for real-time display on monitor reports, and could also issue SNMP traps to the Fault Management System of NMS for integration. An alarm notification by email is also supported.
• In-depth Traffic Analysis:Multi-tiered Top-N ranking reports that being updated at every 5-minute interval and is also available by drill-down functions. The offline analysis on the historical raw data residing in system is also applicable.
• Instant Traffic Snapshot: Abnormal traffic, worms, and the source and destination of attacks are easily been identified and located by the unique traffic snapshot function.
• Topological View for Traffic Snapshot:Traffic Snapshot can also generate a topology report which can give you a topological view about the interested traffic flow. The path of traffic flow can be identified, such that routing analysis can be easily implemented in customer’s network.
• Dark IP Traffic Analysis:The called dark IP traffic is the omen of attacks. The dark IP factor can be used to analyze the dark IP traffic activities.
• Web-based Interface: The system could be accessed from anywhere anytime only with web-client and Internet access. The GUI design would also make the operations friendly to users and quick to learn. HTTPS is supported to provide a more secure web access interface to the system.
• Command Line Interface: In Addition to CLI, the remote Telnet and SSH accesses are also available for operating the system configurations and upgrades securely.
• User Account Management:Four levels of account authority are defined for management of system access, which enables the system suitable for system sharing applications to multi-user environment. The login status of user account can be checked online.
• Multi-lingual Support:Per-user language selection for English, Japanese, Traditional Chinese and Simplified Chinese.
• Flow Record Format:NetFlow™ V1, V5, V7, NetStream™ and sFlow® are supported.
• Flow Data Reservation:Administrators can set the flow data preserving duration. Overdue data will be archived or deleted automatically to reserve hard disk space.
• Data Storage:Users can store raw data, report data in a built-in hard disk or an external NFS storage device.
• Built-in Database:The built-in database can be used to store traffic baseline and anomaly analysis report data. No extra database server is required.
• Database Storage Management:GenieATM 2320 can automatically purge the oldest data in DB once the DB storage utilization has reached up to a threshold defined by users. Users do not need to worry about the running out of disk storage space will stop the service of GenieATM.
• Data Export with ODBC:Through ODBC links, the DB data of “Traffic Monitor Report” and “Traffic Analysis Report” are available for users to retrieve for further integration with customer’s business support system (BSS).
• System Profiling:GenieATM 2320 will automatically profile itself to record the following system performance index: CPU usage, Memory usage, DB disk Usage, Received sessions. Users can easily identify the performance of GenieATM 2320 and promptly prepare the capacity upgrade plan.
• Non-intrusive Deployment:The system will work easily in any network with IP connectivity for data collection and management connection, with no impact to user’s existing network environment.
• Flow Forwarding:Redirect the received NetFlow/NetStream/sFlow data to other NetFlow/NetStream/sFlow collectors.
• Network-wide Monitoring: GenieATM 2320 is capable of monitoring network-wide IP traffic. It is not constrained to monitor or analyze only one specific network segment at a time.
• Embedded BGP Client:With the embedded BGP client software, GenieATM 2320 can collect BGP routing information from BGP server and automatically identify the neighbor ASNs for the use of Peering & Transit Management.
• Peering & Transit Management: By using both of Peering-AS-Factor & Origin-AS-Factor, users can create compound-filter to do peering & transit traffic analysis. In addition, the report of peering & transit traffic for peer AS can be automatically generated with the simple selection of few parameters.
• Home AS Traffic Analysis:The traffic analysis report about the On-net / Off-net traffic from customer’s network can be automatically generated with the simple selection of few parameters. It’s a useful tool to analyze the internet access behavior for POP on ISP’s network.
• AS Path Length based Traffic Analysis:The traffic between router on customer’s network and AS with different AS path length can be analyzed and presented with a tabular report.
• Distributed Global Traffic Analysis:The integration of multiple GenieATM 2320 sites to provide a global traffic analysis solution for large xSP. globalATM provides a central management solution for a huge network with multiple GenieATM 2320 sites deployed.