The network is the unsung hero of any business; transporting information — actually, business value — to and from every resource, application, and employee, functioning quietly and invisibly in the background. Until there is a problem, that is. Then the resource everyone takes for granted is a major problem, a topic of great interest. Avoiding becoming the subject of that kind of discussion is one reason why IT professionals spend so much effort ensuring their network is stable, high performing, and secure.
The central network used to be the IT professional's primary concern. Now, remote and edge networks are a vital part of every organization. Savvy businesses monitor network performance and security all the way to the edge, giving them key insights on how to optimize business and improve operations. But, what type of analytics help drive this intelligence? Let's look at 10 key insights worth monitoring from remote networks.
Network Performance Metrics
The reliability of networks has increased over the last decade even as they have become more complex. Balanced against this increased reliability is the staggering expense of any network downtime or performance degradation. At the end of the day, an organization with fewer – but more costly – issues will find visibility into key network performance metrics is even more critical than it has ever been.
There are four metrics that determine acceptable performance of a distributed network and its activities:
1. Network Bandwidth: Approaching maximum network capacity is a vital indicator of an impending problem. Identifying which users, applications, or protocols are using the most bandwidth enables organizations to manage their network resources wisely and act on bandwidth issues quickly
2. Packet Loss: A well-performing network has little or no packet loss, so even if retransmits mean that no data is lost, substantial packet loss is a useful indicator of network congestion, link failure, or hardware/software issues on network devices. It isn't enough to know that packet loss occurred; seeing the issue as it happens and understanding the root cause means the right action can be taken quickly and effectively.
3. Latency: Latency issues impact productivity and decrease user dissatisfaction. The severity of the effect and user expectation vary from one use case to another. For example, sensitivity to latency for applications like financial trading is much higher than traditional web applications and VoIP. Once you know the accepted latency for your network and applications, then when it goes beyond the threshold you know to pay attention.
4. Errors Rate: Ideally, all packets would arrive to their destinations intact, but, a small fraction do not. The error rate is the percentage of bits or packets that are lost or damaged during delivery. Measure error rates when traffic levels are high in order to have a good understanding of error rate risks. The impact of even small error rates can be large since it can produce a major impact in throughput for applications.
Application Availability Metrics
Networks and applications are inseparable. Network congestion and application latency increase as the data has further to travel between locations. For distributed networks with remote locations, this distance can be a particularly challenging hurdle for application performance and availability. Bandwidth bottlenecks can cause critical applications like VoIP, WEB, ERP and CRM to slow down. Insight into applications at their operational location will speed up application incident analysis and resolution.
IT professionals require application awareness combined with overall network visibility; otherwise they risk being confronted with the signs and symptoms of an issue without the ability to identify and address the root cause.
For edge networks, the following application metrics are needed:
5. Application Performance: Poor application performance impacts user experience, productivity, business transactions, and most importantly, revenue. Real-time insight into application performance metrics such as throughput and response time allows organizations to know the status of each one of their applications wherever they are being used.
6. Application Responsiveness: Every application has an "accepted" response time. Significant deviations from this baseline directly reduce application usability. Measure response time per application to optimize quality of service, manage resources, and ensure application usability.
7. Application Distribution: How can you know if there is an application issue without first learning which applications are in your network? Are social media activities slowing down your entire network? Who is using which application on a daily basis? Visibility into application locations allows insightful business decisions and ensures compliance with policies and SLAs.
Enterprises, under constant threat of attack, have implemented systems for prevention and detection of security threats. This isn't enough. Security incidents can and will occur, and when they do, the investigation into the breach must be timely and comprehensive in order to rapidly understand, contain, and eliminate the attack.
Network-level information critical for speedy breach forensics and productive investigations includes:
8. Network Packets: Investigations without access to the original network packets that carried the intrusion are invariably less effective. Logs and binaries on drives and memory can be altered or deleted, but packets contain critical information about the attacks, attackers, and information transmitted even before the attack initiates. It is a saying among security investigators: "packets don't lie."
9. Long-term Packet Availability: The challenge all enterprises face is that more often than not attacks remain undetected for weeks or even months. With this much time without discovery, attackers are able to inflict higher levels of damage and disguise themselves. Long-term packet-level information is required for effective security investigations of these most damaging breaches.
10. Decryption: For obvious reasons, today, most of the network traffic is encrypted and the percentage is increasing as security becomes a serious concern for most organizations. Without visibility into packets and their content, investigating a breach is not feasible. Having visibility into encrypted traffic eliminates blind spots and enables effective incident investigation.
The ability to actively monitor and act on performance, application and security data is critical for IT professionals today. For organizations with remote locations, the performance and security of their entire network is largely reliant on visibility into these ten metrics.
Mandana Javaheri is CTO of Savvius.
Enterprises that halted their cloud migration journey during the current global pandemic are two and a half times more likely than those that continued their move to the cloud to have experienced IT outages that negatively impacted their SLAs, according to Virtana's latest survey report The Current State of Hybrid Cloud and IT ...
Every business has the responsibility to do their part against climate change by reducing their carbon footprint while increasing sustainability and efficiency. Harnessing optimization of IT infrastructure is one method companies can use to reduce carbon footprint, improve sustainability and increase business efficiency, while also keeping costs down ...
While the adoption of continuous integration (CI) is on the rise, software engineering teams are unable to take a zero-tolerance approach to software failures, costing enterprise organizations billions annually, according to a quantitative study conducted by Undo and a Cambridge Judge Business School MBA project ...
I've had the opportunity to work with a number of organizations embarking on their AIOps journey. I always advise them to start by evaluating their needs and the possibilities AIOps can bring to them through five different levels of AIOps maturity. This is a strategic approach that allows enterprises to achieve complete automation for long-term success ...
Sumo Logic recently commissioned an independent market research study to understand the industry momentum behind continuous intelligence — and the necessity for digital organizations to embrace a cloud-native, real-time continuous intelligence platform to support the speed and agility of business for faster decision-making, optimizing security, driving new innovation and delivering world-class customer experiences. Some of the key findings include ...
When it comes to viruses, it's typically those of the computer/digital variety that IT is concerned about. But with the ongoing pandemic, IT operations teams are on the hook to maintain business functions in the midst of rapid and massive change. One of the biggest challenges for businesses is the shift to remote work at scale. Ensuring that they can continue to provide products and services — and satisfy their customers — against this backdrop is challenging for many ...
Teams tasked with developing and delivering software are under pressure to balance the business imperative for speed with high customer expectations for quality. In the course of trying to achieve this balance, engineering organizations rely on a variety of tools, techniques and processes. The 2020 State of Software Quality report provides a snapshot of the key challenges organizations encounter when it comes to delivering quality software at speed, as well as how they are approaching these hurdles. This blog introduces its key findings ...
For IT teams, run-the-business, commodity areas such as employee help desks, device support and communication platforms are regularly placed in the crosshairs for cost takeout, but these areas are also highly visible to employees. Organizations can improve employee satisfaction and business performance by building unified functions that are measured by employee experience rather than price. This approach will ultimately fund transformation, as well as increase productivity and innovation ...
In the agile DevOps framework, there is a vital piece missing; something that previous approaches to application development did well, but has since fallen by the wayside. That is, the post-delivery portion of the toolchain. Without continuous cloud optimization, the CI/CD toolchain still produces massive inefficiencies and overspend ...
The COVID-19 pandemic has exponentially accelerated digital transformation projects. To better understand where IT professionals are turning for help, we analyzed the online behaviors of IT decision-makers. Our research found an increase in demand for resources related to APM, microservices and dependence on cloud services ...