Cisco Secure Network Analytics ຄູ່ມືຜູ້ໃຊ້

Click the (Ellipsis) icon for the appliance and choose Edit
Appliance Configuration.
In the General tab, scroll to External Services and uncheck
Enable Customer Success Metrics.

Click Apply Settings and save changes as prompted.
Confirm Appliance Status returns to Connected on the Central
Management Inventory tab.

FAQ (ຄໍາຖາມທີ່ພົບເລື້ອຍ)

How do I know if Customer Success Metrics is enabled?

Customer Success Metrics is automatically enabled on your Secure
Network Analytics appliances.

What data is generated by Secure Network Analytics?

Secure Network Analytics generates a JSON file with metrics data
which is sent to the cloud.

“`

View Fullscreen

Cisco Secure Network Analytics
Customer Success Metrics Configuration Guide 7.5.3

ສາລະບານ

ເກີນview

Configuring the Network Firewall

ການຕັ້ງຄ່າຜູ້ຈັດການ

Disabling Customer Success Metrics

Customer Success Metrics Data

Collection Types

Metrics Details

ຕົວເກັບກະແສ

Flow Collector StatsD

ຜູ້ຈັດການ

Manager StatsD

ຜູ້ອໍານວຍການ UDP

All Appliances

ຕິດຕໍ່ສະຫນັບສະຫນູນ

ປະຫວັດການປ່ຽນແປງ

-2-

ເກີນview
ເກີນview
Customer Success Metrics enables Cisco Secure Network Analytics (formerly Stealthwatch) data to be sent to the cloud so that we can access vital information regarding the deployment, health, performance, and usage of your system.
l Enabled: Customer Success Metrics is automatically enabled on your Secure Network Analytics appliances.
l Internet Access: Internet access is required for Customer Success Metrics. l Cisco Security Service Exchange: Cisco Security Service Exchange is enabled
automatically in v7.5.x and is required for Customer Success Metrics. l Data Files: Secure Network Analytics generates a JSON file with the metrics data.
The data is deleted from the appliance immediately after it is sent to the cloud.
ຄູ່ມືນີ້ປະກອບມີຂໍ້ມູນຕໍ່ໄປນີ້:
l Configuring the Firewall: Configure your network firewall to allow communication from your appliances to the cloud. Refer to Configuring the Network Firewall.
l Disabling Customer Success Metrics: To opt out of Customer Success Metrics, refer to Disabling Customer Success Metrics.
l Customer Success Metrics: For details about the metrics, refer to Customer Success Metrics Data.
For information on data retention and how to request deletion of usage metrics collected by Cisco, refer to Cisco Secure Network Analytics Privacy Data Sheet. For assistance, please contact Cisco Support.

-3-

Configuring the Network Firewall
Configuring the Network Firewall
To allow communication from your appliances to the cloud, configure your network firewall on your Cisco Secure Network Analytics Manager (formerly Stealthwatch Management Console).
Make sure your appliances have Internet access.
ການຕັ້ງຄ່າຜູ້ຈັດການ
Configure your network firewall to allow communication from your Managers to the following IP addresses and port 443:
l api-sse.cisco.com l est.sco.cisco.com l mx*.sse.itd.cisco.com l dex.sse.itd.cisco.com l eventing-ingest.sse.itd.cisco.com
If public DNS is not allowed, make sure you configure the resolution locally on your Managers.

-4-

Disabling Customer Success Metrics
Disabling Customer Success Metrics
Use the following instructions to disable Customer Success Metrics on an appliance.
1. Log in to your Manager. 2. Select Configure > Global> Central Management. 3. Click the (Ellipsis) icon for the appliance. Choose Edit Appliance
Configuration. 4. Click the General tab. 5. Scroll to the External Services section. 6. Uncheck the Enable Customer Success Metrics check box. 7. Click Apply Settings. 8. Follow the on-screen prompts to save your changes. 9. On the Central Management Inventory tab, confirm the Appliance Status returns to
Connected. 10. To disable Customer Success Metrics on another appliance, repeat steps 3 through
9.

-5-

Customer Success Metrics Data
Customer Success Metrics Data
When Customer Success Metrics is enabled, the metrics are collected in the system and uploaded every 24 hours to the cloud. The data is deleted from the appliance immediately after it is sent to the cloud. We do not collect identification data such as host groups, IP addresses, user names, or passwords.
For information on data retention and how to request deletion of usage metrics collected by Cisco, refer to Cisco Secure Network Analytics Privacy Data Sheet.
Collection Types
Each metric is collected as one of the following collection types:
l App Start: One entry every 1 minute (collects all the data since the application started).
l Cumulative: One entry for a 24-hour period l Interval: One entry every 5 minutes (total of 288 entries per 24-hour period) l Snapshot: One entry for the point in time the report is generated
Some of the collection types are collected at different frequencies than the defaults we’ve described here, or they may be configured (depending on the application). Refer to Metrics Details for more information.
Metrics Details
We’ve listed the collected data by appliance type. Use Ctrl + F to search the tables by keyword.

-6-

Customer Success Metrics Data

ຕົວເກັບກະແສ

Metric Identification Description

devices_cache.active

Number of active MAC addresses from ISE in the devices cache.

ປະເພດຄໍເລັກຊັນ
ພາບຖ່າຍ

devices_ cache.deleted
devices_ cache.dropped
devices_cache.new
flow_stats.fps flow_stats.flows
flow_cache.active
flow_cache.dropped
flow_cache.ended
flow_cache.max flow_ cache.percentage
flow_cache.started
hosts_cache.cached

Number of deleted MAC addresses from ISE in the devices cache because they have timed out.

ສະສົມ

Number of dropped MAC addresses from ISE because the devices cache is full.

ສະສົມ

Number of new MAC addresses from ISE added into the devices cache.

ສະສົມ

Outbound flows per second in the last minute. Interval

Inbound flows processed.

ໄລຍະຫ່າງ

Number of active flows in the Flow Collector flow cache.

ພາບຖ່າຍ

Number of flows dropped because the Flow Collector flow cache is full.

ສະສົມ

Number of flows ended in the Flow Collector flow cache.

ໄລຍະຫ່າງ

Maximum size of the Flow Collector flow cache. Interval

Percent of capacity of the Flow Collector flow cache

ໄລຍະຫ່າງ

Number of flows added to the Flow Collector flow cache.

ສະສົມ

Number of hosts in the host cache.

ໄລຍະຫ່າງ

-7-

Customer Success Metrics Data

Metric Identification Description

ປະເພດຄໍເລັກຊັນ

hosts_cache.deleted Number of hosts deleted in the host cache.

ສະສົມ

hosts_cache.dropped

Number of hosts dropped because the host cache is full.

ສະສົມ

hosts_cache.max

Maximum size of the host cache.

ໄລຍະຫ່າງ

hosts_cache.new

Number of new hosts added into the host cache.

ສະສົມ

hosts_ cache.percentage

Percent of capacity of the host cache.

ໄລຍະຫ່າງ

hosts_ cache.probationary_ deleted

Number of probationary hosts* deleted in the hosts cache.
*Probationary hosts are hosts that have never been the source of packets and bytes. These hosts are deleted first when clearing up space in the host cache.

ສະສົມ

interfaces.fps

Outbound number of interface statistics per second exported to Vertica.

ໄລຍະຫ່າງ

security_events_ cache.active

Number of active security events in the security events cache.

ພາບຖ່າຍ

security_events_ cache.dropped

Number of security events dropped because the security events cache is full.

ສະສົມ

security_events_ cache.ended

Number of ended security events in the security events cache.

ສະສົມ

security_events_ cache.inserted

Number of security events inserted into the database table.

ໄລຍະຫ່າງ

security_events_ cache.max

Maximum size of the security events cache.

ໄລຍະຫ່າງ

-8-

Customer Success Metrics Data

Metric Identification Description

ປະເພດຄໍເລັກຊັນ

security_events_ cache.percentage

Percent of capacity of the security events cache.

ໄລຍະຫ່າງ

security_events_ cache.started

Number of started security events in the security events cache.

ສະສົມ

session_cache.active

Number of active sessions from ISE in the session cache.

ພາບຖ່າຍ

session_ cache.deleted

Number of deleted sessions from ISE in the session cache.

ສະສົມ

session_ cache.dropped

Number of sessions from ISE dropped because the sessions cache is full.

ສະສົມ

session_cache.new

Number of new sessions from ISE added into the session cache.

ສະສົມ

users_cache.active

Number of active users in the users cache.

ພາບຖ່າຍ

users_cache.deleted

Number of deleted users in the users cache because they have timed out.

ສະສົມ

users_cache.dropped

Number of users dropped because the users cache is full.

ສະສົມ

users_cache.new

Number of new users in the users cache.

ສະສົມ

reset_hour

Flow Collector reset hour.

ບໍ່ມີ

vertica_stats.query_ duration_sec_max

Maximum query response time.

ສະສົມ

vertica_stats.query_ duration_sec_min

Minimum query response time.

ສະສົມ

vertica_stats.query_ duration_sec_avg

Average query response time.

ສະສົມ

-9-

Customer Success Metrics Data

Metric Identification Description

exporters.fc_count

Number of exporters per Flow Collector.

ປະເພດຄໍເລັກຊັນ
ໄລຍະຫ່າງ

Flow Collector StatsD

Metric Identification Description

ndragent.unprocessable_ finding

Number of NDR findings deemed unprocessable.

ndr-agent.ownership_ registration_failed

Technical detail: Number of certain kind of errors that happened during NDR finding processing.

ndr-agent.upload_ success

Number of NDR findings successfully processed by the agent.

ndr-agent.upload_ failure

Number of NDR findings unsuccessfully uploaded by the agent.

ndr-agent.processing_ Number of failures observed during NDR

ຄວາມລົ້ມເຫຼວ

ການປຸງແຕ່ງ.

ndr-agent.processing_ Number of successfully processed NDR

ຄວາມສໍາເລັດ

findings.

ndr-agent.old_file_ delete

ຈໍານວນ files deleted due to being too old.

ndr-agent.old_ registration_delete

Number of ownership registrations revoked due to being too old.

ປະເພດຄໍເລັກຊັນ
Cumulative cleared daily
Cumulative cleared daily
Cumulative cleared daily
Cumulative cleared daily
Cumulative cleared daily
Cumulative cleared daily
Cumulative cleared daily
Cumulative cleared daily

– 10 –

Customer Success Metrics Data

Metric Identification netflow fs_netflow netflow_bytes fs_netflow_bytes sflow sflow_bytes nvm_endpoint nvm_bytes nvm_netflow
all_sal_event all_sal_bytes

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

Total NetFlow records from all Netflow exporters. Includes NVM records.

Cumulative cleared daily

Netflow records received from Flow Sensors only.

Cumulative cleared daily

Total NetFlow bytes received from any NetFlow exporter. Includes NVM records.

Cumulative cleared daily

NetFlow bytes received from Flow Sensors only.

Cumulative cleared daily

sFlow records received from any sFlow exporter.

Cumulative cleared daily

sFlow bytes received from any sFlow exporter.

Cumulative cleared daily

Unique NVM endpoints seen today (before daily reset).

Cumulative cleared daily

NVM bytes received (including flow, endpoint, Cumulative

and endpoint_interface records).

cleared daily

NVM bytes received (including flow, endpoint, Cumulative

and endpoint_interface records).

cleared daily

All Security Analytics and Logging (OnPrem) events received (including Adaptive Security Appliance and non-Adaptive Security Appliance), counted by number of events received.

Cumulative cleared daily

All Security Analytics and Logging (OnPrem) Cumulative

– 11 –

Customer Success Metrics Data

Metric Identification
ftd_sal_event ftd_sal_bytes ftd_lina_bytes ftd_lina_event asa_asa_event asa_asa_bytes
ຜູ້ຈັດການ

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

events received (including Adaptive Security Appliance and non-Adaptive Security Appliance, counted by number of bytes received.

cleared daily

Security Analytics and Logging (OnPrem) (non-Adaptive Security Appliance) events received from Firepower Threat Defense/NGIPS devices only.

Cumulative cleared daily

Security Analytics and Logging (OnPrem) (non-Adaptive Security Appliance) bytes received from Firepower Threat Defense/NGIPS devices only.

Cumulative cleared daily

Data Plane bytes received from Firepower Threat Defense devices only.

Cumulative cleared daily

Data Plane events received from Firepower Threat Defense devices only.

Cumulative cleared daily

Adaptive Security Appliance events received from Adaptive Security Appliance devices only.

Cumulative cleared daily

ASA bytes received from Adaptive Security Appliance devices only.

Cumulative cleared daily

Metric Identification Description

exporter_cleaner_ cleaning_enabled

Indicates whether the Inactive Interfaces and Exporters Cleaner is enabled.

ປະເພດຄໍເລັກຊັນ
ພາບຖ່າຍ

– 12 –

Customer Success Metrics Data

Metric Identification Description

ປະເພດຄໍເລັກຊັນ

exporter_cleaner_ inactive_threshold

Number of hours an exporter can be inactive before it is removed.

ພາບຖ່າຍ

exporter_cleaner_

Indicates whether the Cleaner should use the

using_legacy_cleaner legacy cleaning functionality.

ພາບຖ່າຍ

exporter_cleaner_ hours_after_reset

Number of hours after reset that a domain should be cleaned.

ພາບຖ່າຍ

exporter_cleaner_ interface_without_ status_presumed_ stale

Indicates whether the Cleaner removes interfaces that were unknown to a Flow Collector at the last reset hour, treating them as inactive.

ພາບຖ່າຍ

ndrcoordinator.files_ uploaded

Indicates whether Secure Network Analytics deployment works as Data Store.

ພາບຖ່າຍ

report_complete

Name of the report and the run-time in milliseconds (Manager only).

ບໍ່ມີ

report_params

Filters used when the Manager queries the Flow Collector databases.
Data exported per query:
l maximum number of rows l include-interface-data flag l fast-query flag l exclude-counts flag l flows direction filters l order-by column l default-columns flag l Time window start date and time l Time window end date and time l Number of device ids criteria l Number of interface ids criteria

ພາບຖ່າຍ
Frequency: Per Request

– 13 –

Customer Success Metrics Data

Metric Identification Description

ປະເພດຄໍເລັກຊັນ

l Number of IPs criteria
l Number of IP ranges criteria
l Number of hostgroups criteria
l Number of hosts pairs criteria
l Whether results are filtered by MAC addresses
l Whether results are filtered by TCP/UDP ports
l Number of user names criteria
l Whether results are filtered by number of bytes/packets
l Whether results are filtered by total number of bytes/packets
l Whether results are filtered by URL
l Whether results are filtered by protocols
l Whether results are filtered by applications ids
l Whether results are filtered by process name
l Whether results are filtered by process hash
l Whether results are filtered by TLS version
l Number of ciphers in cipher suite criteria

domain.integration_ ad_count

Number of AD connections.

ສະສົມ

domain.rpe_count

Number of role policies configured.

ສະສົມ

domain.hg_changes_ count

Changes to the Host Group configuration.

ສະສົມ

– 14 –

Customer Success Metrics Data

Metric Identification Description

ປະເພດຄໍເລັກຊັນ

integration_snmp

SNMP agent usage.

ບໍ່ມີ

integration_cognitive

Global threat alerts (formerly Cognitive Intelligence) integration enabled.

ບໍ່ມີ

domain.services

Number of services defined.

ພາບຖ່າຍ

applications_default_ count

Number of applications defined.

ພາບຖ່າຍ

smc_users_count

Number of users in the Web ແອັບ.

ພາບຖ່າຍ

login_api_count

Number of API log ins.

ສະສົມ

login_ui_count

ຈໍານວນ Web App log ins.

ສະສົມ

report_concurrency Number of reports running concurrently.

ສະສົມ

apicall_ui_count

Number of Manager API calls using the Web ແອັບ.

ສະສົມ

apicall_api_count

Number of Manager API calls using the API.

ສະສົມ

ctr.enabled

Cisco SecureX threat response(formerly Cisco Threat Response) integration enabled.

ບໍ່ມີ

ctr.alarm_sender_ enabled

Secure Network Analytics alarms to SecureX threat response enabled.

ບໍ່ມີ

ctr.alarm_sender_ minimal_severity

Minimal severity of alarms sent to SecureX threat response.

ບໍ່ມີ

ctr.enrichment_ enabled

Enrichment request from SecureX threat response enabled.

ບໍ່ມີ

ctr.enrichment_limit

Number of top Security Events to be returned to SecureX threat response.

ສະສົມ

– 15 –

Customer Success Metrics Data

Metric Identification Description

ປະເພດຄໍເລັກຊັນ

ctr.enrichment_period

Time period for Security Events to be returned to SecureX threat response.

ສະສົມ

ctr.number_of_ enrichment_requests

Number of enrichment requests received from SecureX threat response.

ສະສົມ

ctr.number_of_refer_ Number of requests for Manager pivot link

ການຮ້ອງຂໍ

received from SecureX threat response.

ສະສົມ

ctr.xdr_number_of_ alarms

Daily count of alarms sent to XDR.

ສະສົມ

ctr.xdr_number_of_ alerts

Daily count of alerts sent to XDR.

ສະສົມ

ctr.xdr_sender_ enabled

True/False if sending is enabled.

ພາບຖ່າຍ

failover_role

Manager primary or secondary failover role in the cluster.

ບໍ່ມີ

domain.cse_count

Number of custom security events for a domain ID.

ພາບຖ່າຍ

Manager StatsD

Metric Identification

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

ndrcoordinator.analytics_ enabled

Marks whether Analytics is enabled. 1 if yes, 0 if no.

ພາບຖ່າຍ

ndrcoordinator.agents_ contacted

Number of NDR agents contacted during the last contact.

ພາບຖ່າຍ

ndrcoordinator.processing_ Number of errors during NDR finding

ຄວາມຜິດພາດ

ການປຸງແຕ່ງ.

ສະສົມ

– 16 –

Customer Success Metrics Data

Metric Identification

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

ndrcoordinator.files_ uploaded

Number of NDR findings uploaded for processing.

ສະສົມ

ndrevents.processing_errors

ຈໍານວນ files failed to process because the system did not deliver the finding or could not parse the request.

ສະສົມ

ndrevents.files_uploaded

ຈໍານວນ files that were sent to NDR events for processing.

ສະສົມ

sna_swing_client_alive

Internal counter of API calls used by SNA Manager Desktop client.

ພາບຖ່າຍ

swrm_is_in_use

Response Management: Value is 1 if Response Management is used. Value is 0 if it is not used.

ພາບຖ່າຍ

swrm_rules

Response Management: Number of custom rules.

ພາບຖ່າຍ

swrm_action_email

Response Management: Number of custom actions of Email type.

ພາບຖ່າຍ

swrm_action_syslog_ message

Response Management: Number of custom actions of Syslog Message type.

ພາບຖ່າຍ

swrm_action_snmp_trap

Response Management: Number of custom actions of SNMP Trap type.

ພາບຖ່າຍ

swrm_action_ise_anc

Response Management: Number of custom actions of ISE ANC Policy type.

ພາບຖ່າຍ

swrm_action_webhook

Response Management: Number of custom actions of Webhook type.

ພາບຖ່າຍ

swrm_action_ctr

Response Management: Number of custom actions of threat response Incident type.

ພາບຖ່າຍ

– 17 –

Customer Success Metrics Data

Metric Identification va_ct va_ce va_hcs va_ss va_ses sal_input_size sal_completed_size
sal_flush_time
sal_batches_succeeded

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

Visibility Assessment: Calculated runtime in milliseconds.

ພາບຖ່າຍ

Visibility Assessment: Number of errors (when calculation crashes).

ພາບຖ່າຍ

Visibility Assessment: Host count API response size in bytes (detect excessive response size).

ພາບຖ່າຍ

Visibility Assessment: Scanners API response size in bytes (detect excessive response size).

ພາບຖ່າຍ

Visibility Assessment: Security Events API response size in bytes (detect excessive response size).

ພາບຖ່າຍ

Number of entries in the pipeline input queue.

ພາບຖ່າຍ
Frequency: 1 minute

Number of entries in the completed batch queue.

ພາບຖ່າຍ
Frequency: 1 minute

Amount of time in milliseconds since the last pipeline flush.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ພາບຖ່າຍ
Frequency: 1 minute

Number of batches successfully written to the file.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

– 18 –

Customer Success Metrics Data

Metric Identification sal_batches_processed sal_batches_failed sal_files_moved sal_files_failed sal_files_discarded sal_rows_written sal_rows_processed sal_rows_failed

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

Number of batches that were processed. Interval

Available with Security Analytics and Logging (OnPrem) Single-node only.

Frequency: 1 minute

Number of batches that have failed to complete writing to the file.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

ຈໍານວນ files moved to the ready directory.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

ຈໍານວນ files that have failed to be moved.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

ຈໍານວນ files discarded due to error.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

Number of rows written to the referenced file.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

Number of rows that were processed.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

Number of rows that failed to be written. Interval

Available with Security Analytics and

ຄວາມຖີ່:

– 19 –

Customer Success Metrics Data

Metric Identification
sal_total_batches_ succeeded sal_total_batches_ processed sal_total_batches_failed
sal_total_files_moved
sal_total_files_failed
sal_total_files_discarded sal_total_rows_written

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

Logging (OnPrem) Single-node only.

1 ນາທີ

Total number of batches successfully written to the file.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

Total number of batches that were processed.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

ຈໍານວນທັງຫມົດຂອງ files that have failed to complete writing to the file.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

ຈໍານວນທັງຫມົດຂອງ files moved to the ready directory.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

ຈໍານວນທັງຫມົດຂອງ files that have failed to be moved.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

ຈໍານວນທັງຫມົດຂອງ files discarded due to error.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

Total number of rows written to the referenced file.
Available with Security Analytics and

App Start
Frequency: 1 minute

– 20 –

Customer Success Metrics Data

Metric Identification
sal_total_rows_processed
sal_total_rows_failed sal_transformer_ <transformer id> sal_bytes_per_event sal_bytes_received sal_events_received sal_total_events_received sal_events_dropped

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

Logging (OnPrem) Single-node only.

Total number of rows that were processed.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

Total number of rows that failed to be written.
Available with Security Analytics and Logging (OnPrem) Single-node only.

App Start
Frequency: 1 minute

Number of transformation errors in this transformer.
Available with Security Analytics and Logging (OnPrem) Single-node only.

ໄລຍະຫ່າງ
Frequency: 1 minute

Average number of bytes per event received.

ໄລຍະຫ່າງ
Frequency: 1 minute

Number of bytes received from the UDP server.

ໄລຍະຫ່າງ
Frequency: 1 minute

Number of events received from the UDP server.

ໄລຍະຫ່າງ
Frequency: 1 minute

Total number of events received by the router.

App Start

Number of unparsable events dropped.

ໄລຍະຫ່າງ
Frequency: 1 minute

– 21 –

Customer Success Metrics Data

Metric Identification sal_total_events_dropped sal_events_ignored sal_total_events_ignored sal_receive_queue_size sal_events_per second sal_bytes_per_second sna_trustsec_report_runs
ຜູ້ອໍານວຍການ UDP

ລາຍລະອຽດ

ປະເພດຄໍເລັກຊັນ

Total number of unparsable events dropped.

App Start
Frequency: 1 minute

Number of ignored/unsupported events.

ໄລຍະຫ່າງ
Frequency: 1 minute

Total number of ignored/unsupported events.

App Start
Frequency: 1 minute

Number of events in the receive queue.

ພາບຖ່າຍ
Frequency: 1 minute

Ingest rate (events per second).

ໄລຍະຫ່າງ
Frequency: 1 minute

Ingest rate (bytes per second).

ໄລຍະຫ່າງ
Frequency: 1 minute

Number of daily TrustSec report requests.

ສະສົມ

Metric Identification Description

sources_count

Number of sources.

ປະເພດຄໍເລັກຊັນ
ພາບຖ່າຍ

– 22 –

Customer Success Metrics Data

Metric Identification Description

rules_count packets_unmatched packets_dropped

Number of rules. Maximum unmatched packets. Dropped packets eth0.

Collection Type Snapshot Snapshot Snapshot

All Appliances

Metric Identification Description

ປະເພດຄໍເລັກຊັນ

ເວທີ

Hardware platform (ex: Dell 13G, KVM Virtual Platform).

ບໍ່ມີ

ລໍາດັບ

Serial number of the appliance.

ບໍ່ມີ

ສະບັບ

Secure Network Analytics version number (ex: 7.1.0).

ບໍ່ມີ

version_build

Build number (ex: 2018.07.16.2249-0).

ບໍ່ມີ

version_patch

Patch number.

ບໍ່ມີ

csm_version

Customer Success Metrics code version (ex: 1.0.24-SNAPSHOT).

ບໍ່ມີ

power_supply.status

Manager and Flow Collector power supply statistics.

ພາບຖ່າຍ

productInstanceName Smart Licensing product identifier.

ບໍ່ມີ

– 23 –

ຕິດຕໍ່ສະຫນັບສະຫນູນ
ຕິດຕໍ່ສະຫນັບສະຫນູນ
ຖ້າທ່ານຕ້ອງການສະຫນັບສະຫນູນດ້ານວິຊາການ, ກະລຸນາເຮັດສິ່ງຫນຶ່ງຕໍ່ໄປນີ້: l ຕິດຕໍ່ຄູ່ຮ່ວມງານ Cisco ທ້ອງຖິ່ນຂອງທ່ານ l ຕິດຕໍ່ສະຫນັບສະຫນູນ Cisco l ເພື່ອເປີດກໍລະນີໂດຍ web: http://www.cisco.com/c/en/us/support/index.html l ສໍາລັບການສະຫນັບສະຫນູນໂທລະສັບ: 1-800-553-2447 (ສະຫະລັດ) l ສໍາລັບຕົວເລກສະຫນັບສະຫນູນທົ່ວໂລກ: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html

– 24 –

ປະຫວັດການປ່ຽນແປງ

ເອກະສານສະບັບ 1_0

ວັນທີ່ 18 ສິງຫາ 2025

ປະຫວັດການປ່ຽນແປງ
Description Initial Version.

– 25 –

ຂໍ້ມູນລິຂະສິດ
Cisco ແລະ ໂລໂກ້ Cisco ແມ່ນເຄື່ອງໝາຍການຄ້າ ຫຼືເຄື່ອງໝາຍການຄ້າທີ່ຈົດທະບຽນຂອງ Cisco ແລະ/ຫຼື ສາຂາໃນສະຫະລັດ ແລະປະເທດອື່ນໆ. ເຖິງ view ບັນຊີລາຍຊື່ຂອງເຄື່ອງຫມາຍການຄ້າ Cisco, ໄປທີ່ນີ້ URL: https://www.cisco.com/go/trademarks. ເຄື່ອງຫມາຍການຄ້າພາກສ່ວນທີສາມທີ່ໄດ້ກ່າວມາແມ່ນຊັບສິນຂອງເຈົ້າຂອງຂອງເຂົາເຈົ້າ. ການນໍາໃຊ້ຄໍາວ່າຄູ່ຮ່ວມງານບໍ່ໄດ້ຫມາຍເຖິງການພົວພັນຄູ່ຮ່ວມງານລະຫວ່າງ Cisco ແລະບໍລິສັດອື່ນໆ. (1721R)
© 2025 Cisco Systems, Inc. ແລະ/ຫຼື ສາຂາຂອງມັນ. ສະຫງວນລິຂະສິດທັງໝົດ.

ເອກະສານ / ຊັບພະຍາກອນ

Cisco Secure Network Analytics [pdf] ຄູ່ມືຜູ້ໃຊ້
v7.5.3, Secure Network Analytics, Secure Network Analytics, Network Analytics, Analytics

ເອກະສານອ້າງອີງ

ຄູ່ມືຜູ້ໃຊ້

Cisco Secure Network Analytics ຄູ່ມືຜູ້ໃຊ້

ການວິເຄາະເຄືອຂ່າຍທີ່ປອດໄພ

ຂໍ້ມູນຜະລິດຕະພັນ

ຂໍ້ມູນຈໍາເພາະ:

ຄໍາແນະນໍາການນໍາໃຊ້ຜະລິດຕະພັນ

Configuring the Network Firewall:

Configuring the Manager:

Disabling Customer Success Metrics:

FAQ (ຄໍາຖາມທີ່ພົບເລື້ອຍ)

How do I know if Customer Success Metrics is enabled?

What data is generated by Secure Network Analytics?

ເອກະສານ / ຊັບພະຍາກອນ

ເອກະສານອ້າງອີງ

ອອກຄໍາເຫັນ

ຍົກເລີກການຕອບ