Thursday, 30 June 2011 11:49 |
Dear Network and Security Monitoring people :
We are excited to release Trisul 1.4 for immediate public download . Please sign up and download the latest builds today. All you need is a Linux box running Ubuntu or CentOS.
Release highlights
New Features
Branch monitoring |
Allows you to meter traffic by branches of your organization. You can specify subnets that constitute a branch office. You can then monitor branch traffic at the aggregate level. You can also drilldown into activity of each workstation within a branch. This works with both Netflow and PCAP mode. Various UI features like Branch Dashboard/ Drilldown make this a easy to use feature. Use case : Enterprises with many branches such as retail / banking etc. |
Subscriber user role |
A new user type called Subscriber has been added. This is in addition to the existing user roles of Admin, Operator, Forensic Operator. A subscriber login can only view reports for a specific service he/she has access to. Use case : This feature can be exploited by ISP/MSP to use Trisul as a base platform to offer end user reports. |
Whitelisting |
Allows you to specify a whitelist of networks and applications branch nodes are allowed to access. If any violation is detected an alert is generated with details about the branch & node that caused the violation. Use case : Detect security violations by branch nodes. |
Enhancements & Fixes
- Flows now show the protocols TCP/UDP/GRE/ESP/ICMP etc
- Greatly increased performance for flow based drilldowns
- A new business hour setting in options is used as default daily time range
- Charting legends cleaned up
- Fixed errors working with Snort Unix Socket alert input on Ubuntu 64 bits
- Autocomplete can detect branch based on IP input (invaluable tool in the field)
All users of Trisul are encouraged to update their installations.
All data will be retained after the update.
Thanks for your wonderful support for Trisul.
|