vantage
Home / Solutions / IT Service Management /
Brochures/Fact Sheets
Customers Case Studies
White Papers
Webcasts On-Demand
Press & Analyst Coverage

Products
ClientVantage
ServerVantage
NetworkVantage
ApplicationVantage
Vantage Analyzer
Vantage Service Check
Vantage Service Manager


Technical Support

Technical questions?
Visit Frontline
[Log-in required]
 

Vantage Application Decodes

Overview

Vantage decodes over 2000 applications and protocols to provide a detailed view of network performance. Network monitoring discovery capabilities extend all the way through the OSI 7-layer protocol stack. Check out the latest Vantage Decodes.

In addition to out-of-the-box application decodes, Vantage allows users to define a wide range of custom applications.  This capability is based on sixteen different attributes of network traffic.

Example Application Decodes

The following is a brief description of the seven layers of the OSI protocol stack and example Vantage application and protocol decodes within each layer.

Layer 1 - Physical

This layer conveys the bit stream. It defines the connection, electrical, optical and wiring specifications. It provides the means of sending and receiving data on a carrier. It provides the hardware means of sending and receiving data on a carrier, including defining cables, cards and physical aspects. Operates in units of bits.

Protocols/Interfaces:
LAN
10BaseTX, 100BaseTX, 100BaseFX, 1000Base-LX, 1000Base-SX Ethernet; Fiber Optical 100Mbps
WAN
X.21, V.35, HSSI, Integrated CSU/DSU (T1)

Layer 2 - Data Link

At this layer, data packets are encoded and decoded into bits. It furnishes transmission protocol knowledge and management and handles errors in the physical layer, flow control and frame synchronization. The data link layer is divided into two sub layers: Media Access Layer and Logical Link Control. Each operates in units of frames.

Examples of Protocols decoded:
802.3, FDDI, 802.1Q, ARP, PPP, CHAP, PAP

Layer 3 - Network

This layer provides switching and routing technologies transmitting data from node to node. Routing and forwarding are functions of this layer as well as addressing, internetworking, error handling, congestion control and packet sequencing. Operates in units of Packets.

Examples of Protocols decoded:
IP, IPv6, BOOTP, GRE, ICMP, RSVP BGP, E-IGRP, OSPF, RIP, DRP NetBIOS, NetBEUI, SNA, IPX, X.25 PLP

Layer 4 - Transport

This layer provides transparent transfer of data between systems or hosts and is responsible for end-to-end error recovery and flow control. It ensures complete data transfer and operates in units of messages.

Examples of Protocols decoded:
TCP, UDP, Oracle TNS, Sybase TDS, SPX, ISO-TP, ADSP, GPRS 

Layer 5 - Session

This layer establishes, manages and terminates connections between applications. The session layer establishes, coordinates, and terminates conversations, exchanges and dialogues between the applications at each end. It deals with session and connection coordination.

Examples of Protocols decoded:
DNS, H.245(VoIP), T.120, RTCP, RTP, SIP, Sun RPC, NetBIOS Name Server, Citrix

Layer 6 - Presentation

This layer provides independence from differences in data representation (e.g., encryption). It performs data format conversion and provides compression, encoding and encryption of data.

Examples of Protocols decoded:
SQL*Net/Oracle8, ISO-PP

Layer 7 - Application

Provides standards services to applications and end-user interfaces. Communication partners and quality of service are identified, and user authentication is considered. Everything at this layer is application specific.

Examples of Applications and Protocols decoded:
HTTP, FTP, CDP, IRC, NNTP, RLOGIN, SMTP, IMAP, POP, SNMP, Telnet, X-Windows, SMB, RPC, SAP R/3, NCP, X.400, DAP, LAT, AFP, NIS, NFS, Mount, Port Mapper, MS Netlogin, MS Exchange, KaZaA, eDonkey

Vantage Application Decodes

Application discovery enhancements in Vantage include the following new decodes:

  • Citrix traffic types (Interactive, Printer, Audio, Other)
  • Citrix user-defined applications
  • VoIP and Streaming applications
 

The following signaling protocols will be identified:

  • H.225.0 Call Signaling
  • H.245 Call Control
  • H.248 Binary
  • H.323 Gatekeeper Discovery
  • H.323 Gatekeeper Registration
  • H.323 Call Signaling
  • H.323 Call-sig-transport
  • H.323 Host Call Secure
  • Microsoft Media Server Protocol
  • Megaco H.248
  • MGCP Gateway
  • RSVP
  • SDP
  • SGCP
  • SIP
  • SIP Registration
  • SIP Registration Request
  • SIP-TLS
  • Skinny Client Control Protocol

The following streaming protocols will be identified:

  • G.711 (PCMA) Audio
  • G.711 (PCMU) Audio
  • G.723.1 Audio
  • G.726 Audio
  • G.729 Audio
  • GSM Audio
  • H.263 Video
  • LPC Audio
  • RTP
  • RTCP
  • IBM WebSphere MQSeries - added heuristic component to decode
  • Nimda Virus
  • Peer-to-peer applications:
    - KaZaA - changed to a heuristic decode
    - eDonkey
    - Bit Torrent
    - Gnutella
    - WinMX
    - DirectConnect
    - MP2P (Monolito)
    - Lobster
    - Piolet
  • Improved SMB decoding for better breakout of:
    - SQL Server
    - Print Spooler
    - User-defined applications defined by "open file request"
  • Endpoint Mapper
  • Port Mapper / RPC Bind
  • Checkpoint Firewall
  • L2TP - Layer 2 Tunneling Protocol
  • WAP
  • GPRS Tunneling
  • Frame Relay Fragmentation:
    - FRF-12
    - Nortel (fragmentation/consolidation)
    - Motorola Vanguard
  • ICMP Calls:
    - Fragmentation needed
    - Source Quench
    - Time Exceeded
    - Redirect