This section is updated with each release of FlowTraq.
Feature: Automated mitigation of volumetric DDoS attacks based on NBI behavioral baselining, for selected hardware platforms
Feature: Customizable context menus allowing fast external search and reference
Feature: Improved NBI detection speeds, to within seconds for some common attacks and events
Feature: Improved anomaly detection flexibility using volume and connection rates
Lateral: Dashboard charts now clickable to open new workspaces
Lateral: Improved time navigation by chart selection
Bugfix: VLAN reports in legacy Java client now display correctly in window and PDF
Bugfix: Miscellaneous UI elements including filters not updating
Feature: Labeling of internal traffic for faster filtering and viewing (INT filter)
Feature: Send/Receive filter options to select sending or receiving IPs, Blocks, etc.
Feature: Improved multi-tenancy partitioning, including partitioning for multiple internal or external customers
Feature: Automatic partition tagging of flow records based on exporter IP address
Feature: Traffic grouping for multi-tenancy support
Feature: Traffic groups now support up to 512 CIDR blocks instead of 32
Feature: Ability to search on internal addresses
Feature: Improved filter and view navigation
Feature: User accounts are partition-bound
Feature: Improved exfiltration detection
Feature: The dashboard is now fully customizable
Feature: LDAP user authentication support is now included with the FlowTraq server
Feature: Viewing, filtering, and friendly-name support was added for CID objects
Feature: Additional I/O schedulers were added for systems under extreme loads
Feature: Virtual Appliance now features an 'update' menu item for updating FlowTraq
Feature: Virtual Appliance now automatically fully rekeys FlowTraq on first startup
Feature: Sessionkeys can be configured to be address portable and drop privileges when used with the 'switchuser' command
Feature: FlowTraq server PID file may be stored in locations other than /var/run
Lateral: Additional graph color schemes were added in the user preferences section
Bugfix: Various minor graphical issues were fixed where FlowTraq failed to render properly on some browsers
Feature: Nested Traffic Groups were added for fine-grained classification of traffic upon ingress
Feature: CISCO NBAR and NBAR2 support for application names
Feature: Palo Alto AppID support for application names
Feature: Drag-to-zoom was added to workspace graphs
Feature: Support for 32-bit IFindex numbers for interfaces
Feature: Main dashboard graph can now be customized
Feature: Users can store links to favorite workspaces on the dashboard
Feature: New views include source port, destination port, and application views
Lateral: Improved I/O scheduling for systems under extreme loads
Feature: Traffic Groups were added for classification of traffic upon ingress.
Feature: FriendlyNames for users allowing tagging of FlowTraq entities such as IP, Traffic Group, VLAN, Exporter, and Interface. Full list of ASN names included.
Feature: New Views: CIDR block (using masklengths from export packet or ASN resolver), CIDR pairs, Exporter-Interface, Exporter-Interface pairs, Traffic Groups, and Traffic Group pairs (Web Interface only)
Feature: Click-to-Filter and Click-to-Name on the Web Interface
Feature: CLI environment variables for common parameters: FLOWTRAQ_USERNAME, FLOWTRAQ_PASSWORD, FLOWTRAQ_SERVER, FLOWTRAQ_PORT
Feature: NBI alerted entities are now the default Web Dashboard view. Click-to-investigate was added to all alerts for improved workflow.
Feature: Expanded API for external links to FlowTraq Web
Feature: Server Administration page for the Web Interface for managing license keys and performance parameters.
Feature: Updated Web Interface workspace now includes country, and ASN information for IP address and NetBlock views
Lateral: Improved I/O handling on Linux systems
Lateral: sFlow: configuration option to use 'agent address' instead of 'from' address as flow source
Lateral: NBI tools are memory-bounded to 32MB per instance
Lateral: Simplified database sizing for manual configuration and Web Interface
Lateral: Reduced workload for NBI Blacklist and Behavioral Fingerprint Generator tools
Lateral: Improved SIEM compatibility
Lateral: Moved from hexadecimal to decimal representation of QoS
For details on pre-Q3/13 versions of FlowTraq please contact your FlowTraq Support Representative.