02-22-2022 08:33 PM
I am new to the cisco stealthwatch product. I want to learn more about it. May I please know any useful documentation to start with? My plan is to begin with:
1) How do I install, configure this product.
2) How do I configure host group, flow.
3)how do I monitor network traffic with this?
Or is there any best approach to learn this product.
What are the different stealthwatch product?
What is difference between stealthwatch and stealthwatch enterprise? Are these same?
02-22-2022 09:27 PM
02-24-2022 01:01 AM - edited 02-24-2022 01:02 AM
In addition to the page linked by @sammausing , Stealthwatch is the name commonly used to refer to the product formerly known as Stealthwatch Enterprise, the product acquired from Lancope acquisition in 2015. That is distinct from what was known as Stealthwatch Cloud which is the result of Cisco acquiring Observable Networks in 2017. Both use flow records to inform their analysis.
They are now known as Cisco Secure Network Analytics (SNA) and Secure Cloud Analytics (SCA) respectively.
03-07-2022 05:31 AM
Try these two dCloud labs, they cover an end-to-end deployment more or less from scratch.
https://dcloud2-lon.cisco.com/content/demo/417345
https://dcloud2-lon.cisco.com/content/demo/410272
04-27-2022 11:58 PM - edited 05-02-2022 04:52 AM
In essence, Cisco Stealthwatch drastically enhances threat defence by giving detailed network visibility and security analytics. It helps you know every host, record every conversation, understand what is normal, it alerts you to change and enables you to respond to threats quickly.
https://www.cisco.com/c/en/us/support/security/stealthwatch/products-installation-guides-list.html
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide