Home > Success Center > Log & Event Manager (LEM) > SolarWinds LEM 6.3 User Guide > Basic LEM procedures > Explore view – Access data analysis utilities

Explore view – Access data analysis utilities

Created by Caroline Juszczak, last modified by Caroline Juszczak on Jul 22, 2016

Views: 324 Votes: 0 Revisions: 4

The Explore view provides access to data analysis utilities to retrieve additional information about the events you see in the LEM console.

The nDepth option locates and analyzes the events on your network. This option includes:

  • Clickable charts and utilities to view and refine search results
  • Toolbar options to switch between multiple utilities and views
  • A Result Details utility to view all of your search results in text format
  • A PDF export utility to configure and export custom reports

Use the Utilities option to access several IT analysis utilities, including:

  • Whois
  • NSLookup
  • Traceroute
  • Flow (sFlow and NetFlow)

Execute a Whois, NSLookup, or Traceroute task from an event or search result

  1. Locate and select the event or search result you want to explore.
  2. Click Explore and select an option in the drop-down menu.

Execute a blank Whois, NDLookup, or Traceroute task

  1. Click the Explore tab and select Utilities.
  2. Click Explore on the Utilities title bar and select a utility.
  3. Complete the form for the utility, and click Search.

Collect and display flow data

LEM supports flow exports from both NetFlow and sFlow devices. Use the Flow Explorer in the LEM console to view graphs, charts, and grids, as well as:

  • Top Talkers by Internet Assigned Numbers Authority (IANA)-based Protocol
  • Top Talkers by Port
  • Top Talkers by Source/Destination Address
  • Top Talkers by Total Bytes
  • Top Talkers by Total Packets

See the manufacturer specifications to configure your devices to send Flow data to your LEM appliance. The LEM appliance supports data on the 2100/UDP for NetFlow devices and 6343/UDP for sFlow devices.

Enable flow collection and analysis on the LEM appliance

  1. Connect to your LEM virtual appliance using either the vSphere console view or an SSH client like PuTTY.

    If you are using an SSH client, log in to your LEM virtual appliance using your CMC credentials.

  2. At the cmc> prompt, enter service.
  3. At the cmc::scm# prompt, enter enableflow.
  4. To confirm your entry, enter y.

    The Manager service on LEM automatically restarts.

  5. At the prompt, enter n and follow the prompts to select the Flow collector and enable Flow Analysis for Flow data collected on another system.

    Otherwise, enter y.

  6. Enter exit and press Enter to return to the cmc> prompt.
  7. Enter exit and press Enter to log out of your LEM virtual appliance.

View flow data in the LEM console

  1. Open the LEM Console and log in to the LEM Manager as an administrator.
  2. Open the Monitor view.
  3. Click the Explore drop-down menu and select Flow.

    The Flow Explorer presents data in graph, chart, or grid formats.

 

 
You must to post a comment.
Last modified
17:15, 22 Jul 2016

Tags

Classifications

Public