We just raised a $30M Series A: Read our story

Compare Auvik vs. SolarWinds NetFlow Traffic Analyzer

Cancel
You must select at least 2 products to compare!
Vectra AI Logo
13,736 views|6,470 comparisons
Auvik Logo
Read 21 Auvik reviews.
2,504 views|1,174 comparisons
Featured Review
Find out what your peers are saying about Auvik vs. SolarWinds NetFlow Traffic Analyzer and other solutions. Updated: November 2021.
554,873 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"The administrative privilege detection feature is the most valuable feature. The admin accounts are often highly accessible to the high-risk component of the environment. If those accounts are compromised or are being used in a suspicious manner, that's high-fidelity events for us to look into.""It has helped us to organize our security. We get a better overview on what is happening on the network, which has helped us get quicker responses to users. If we see malicious activity, then we can quickly take action on it. Previously, we weren't getting an overview as fast as we are now, so we can now provide a quicker response.""One of the key advantages for us is we define a 24/7 service around it. We use far more of Vectra alerts than we do with our SIEM product because we understand that when we get an alert from Vectra we actually need to do something about it.""One of the most valuable features of the platform is its ability to provide you with aggregated risk scores based on impact and certainty of threats being detected. This is both applied to individual and host detections. This is important because it enables us to use this platform to prioritize the most likely imminent threats. So, it reduces alert fatigue follow ups for security operation center analysts. It also provides us with an ability to prioritize limited resources.""Vectra produces actionable data using automation. That has helped us. It's less manpower now to look at incidents, which has definitely increased efficiency. Right now, in a lot of cases, our mean time to detection is within zero days. This tells me by the time something happened, and we were able to detect it, it was within the same day.""It keeps up with the network traffic, which is a good thing. It provides more context to plain alerts compared to using an older system. So, it helps an analyst reduce the information overload.""One of the core features is that Vectra AI triages threats and correlates them with compromised host devices. From a visibility perspective, we can better track the threat across the network. Instead of us potentially finding one device that has been impacted without Vectra AI, it will give us the visibility of everywhere that threat went. Therefore, visibility has increased for us.""The solution's ability to reduce alerts, by rolling up numerous alerts to create a single incident or campaign, helps in that it collapses all the events to a particular host, or a particular detection to a set of hosts. So it doesn't generate too many alerts. By and large, whatever alerts it generates are actionable, and actionable within the day."

More Vectra AI Pros »

"We have backup connectivity in case of some failures. So, it has been of some help. Our mean time to resolution has been decreased by half an hour.""The solution automatically updates network topology. The network topology has been great, not only just for troubleshooting things, but also for training. I can show newer or not-so-experienced guys what a network looks like from the top down. Also, we have used the network diagrams for our audits, where we just kind of print it out and hand it to them. It satisfies all of those requirements.""Its network discovery capabilities are pretty good. It kind of spiders out and detects pretty much everything on the network, e.g., things that we are using and not using anymore. Its network discovery capabilities allow me to detect these things so I can track them down and shut them off.""One of the great things about Auvik is the shared collector mode, which is useful in an environment that has more than one physical location. We have 15 different locations, and I can have all of those locations pointing to one collector. So, all these locations are sharing this one collector, and I can get a map, which is way out on top of the map that you would see in Google maps, to see all my locations. I can see alerts on that map for any of those 15 locations. I can zoom in right there to the location, and from there, click on it. It is really handy.""The automated, out-of-the-box device configuration backup capability is one of the key features for me in Auvik. To manage a network, one of my key requirements is to be able to rebuild that network if something catastrophic happens. Having up-to-date backups is a must, and this is a tool that I count on to get that right, and it has always performed as I expect.""Its network discovery capabilities are very impressive. The discovery piece is amazing. I don't know if they have an AI or some type of advanced intelligence inside of their program that helps with the discovery piece. I haven't seen anything that discovers products that well and is able to label them, tag them, and pull as much information about them. I don't know what drives that engine, but I'm just absolutely blown away by it. It is cool.""With TrafficInsights, we can view the information and do something with it. In the past, we couldn't easily find that information.""It is useful for configuration management and automated backup. It is one of my favorite features because it is low-hanging fruit, and it is easy to accomplish, but on a network where we've got infrastructure devices in hundreds, it is an arduous task to keep on top of. Auvik does it all automatically, so that's probably one of my favorites because it is important, and it just does it automatically. I don't even have to think about it."

More Auvik Pros »

"SolarWinds has improved our organization because whenever a device is down, we get an alert.""What I like the most is the bandwidth assessment.""The most valuable feature is the ability to look for any increases in bandwidth over time so that we can plan before it becomes critical.""The most valuable features are the bandwidth analyzer, the monitoring, the network analyzer, it has overall good performance, and an easy deployment.""For managing the traffic, it provides you a response about whether the traffic is down, up, or heavy, which is a very powerful feature. It has a good response time. We have been using this solution for many years, and we don't have any problem with this solution.""The software management tools are very useful for our customers.""The monitoring is perfect, showing you the details for the utilization of resources and network bandwidth.""The most valuable feature is the alarm that is set up to trigger based on bandwidth utilization."

More SolarWinds NetFlow Traffic Analyzer Pros »

Cons
"I would like to see a bit more strategic metrics instead of technical data. Information that I could show to my executive management team or board would be valuable.""The main improvement I can see would be to integrate with more external solutions.""I would like more integrations with IOCs and threats currently on the Internet. I would also like to know which threats are based on zero-day attacks, current botnets, etc. Therefore, I would like more information on external threats.""The solution has not reduced the security analyst workload in our organization because we still need to SIEM. Unfortunately, while Vectra, for us, is a brilliant tool for network investigations, giving wonderful visibility, it doesn't go the whole way to replace our SIEM that is needed for compliance. So, I still have the same amount of alerting and logging that I did before. It gives us more defined ability to see incidents, but it doesn't give us enough information to satisfy a PCI or 27001 audit.""They use a proprietary logging format that is probably 90% similar to Bro Logs. Their biggest area of improvement is finishing out the remaining 10%. That 10% might not be beneficial to their ML engine, but that's fine. The industry standard is Zeek Logs or Bro Logs, or Bro or Zeek, depending on how old you are. While they have 90% of those fields, they're still missing some fields. In very rare instances, some community rules do not have the fields that they need, and we had to modify community rules for our logs. So, their biggest area of improvement would be to just finish their matching of the Zeek standard.""Some of the customization could be improved. Everything is provided for you as an easy solution to use, but working with it and doing specific development could be worked on a bit more in the scope of an incident response team.""You are always limited with visibility on the host due to the fact that it is a network based tool. It gives you visibility on certain elements of the attack path, but it doesn't necessarily give you visibility on everything. Specifically, the initial intrusion side of things that doesn't necessarily see the initial compromise. It doesn't see stuff that goes on the host, such as where scripts are run. Even though you are seeing traffic, it doesn't necessarily see the malicious payload. Therefore, it's very difficult for it to identify these type of host-driven complex attacks.""One thing which I have found where there could be improvement is with regard to the architecture, a little bit: how the brains and sensors function. It needs more flexibility with regard to the brain. If there were some flexibility in that regard, that would be helpful, because changing the mode of the brain is complex. In some cases, the change is permanent. You cannot revert it."

More Vectra AI Cons »

"Most of the issues that I have had are related to the dashboard and wanting a bit more customization available through the dashboard because that's where you'll spend most of your time. Auvik is on the dashboard, and you can create and save these filters, which is great, but if I were to filter the map by all switches, the information below doesn't reflect the filter. I have to select the device within the filter, and then it starts to show the results. I can then see the dashboard of that device. If I were to filter by switches, I would like my top device utilization to only show me switches from my alerts and anything related to my map filter.""It uses SNMP in its discovery process and how it pulls in data. But today it doesn't have an SNMP trap facility so you can't have your infrastructure devices push alerts into Auvik. And that for us would be a big feature that we would like to see.""It would be cool if they came out with an app, but running the browser isn't bad.""Some of the automation pieces for discovery still need a little bit more improvement. I wouldn't mind seeing some more security features as that's the world we're driving into. I know Auvik probably wants to try to keep itself separate because that's its brand, but even if they brought on board another brand that was able to plug into them, it would benefit us. It would lower some more network security costs if as a company, they are a one-stop shop. They have already got the network piece going. If they improved in that area and focused a lot on that, they would gain me as a customer, and they would probably gain a lot of others.""They can definitely build more alerts.""I would like firmware/software updates for hardware, for at least switches and routers. I already have the feature request in, and it is on their list of things to try and do. Cisco stuff has been notoriously and historically kind of a pain to do, and that is what we use primarily. So, that would be a wonderful thing to get, as it is a device-by-device process. It would be nice to be able to get through that at least in a less fiddly way. It is a pretty manual process now.""It needs flexibility for the pooling of information. Because it is fully automated, it is pooling everything from the device from a given category. There is no way to exclude things that are not important or if you want to temporarily remove them to see statistics of other things. For example, we get about 100 MB from Auvik. We are unable to limit this. We would rather stop monitoring something, since some features will always give you alerts, because they shouldn't be monitored. However, it is impossible to exclude them, e.g., the internal interface. If somebody disconnects the device from the internal interface, we get an alert. So, this is something that is really painful for us. More flexibility would solve most of our issues.""A room for improvement would be integration with our help desk system."

More Auvik Cons »

"This solution does not do a very good job when I am trying to look deeper into my internal network, in particular with respect to individual ports.""It does not flow. It cannot do our metric performance monitoring. So it is very limited. They can do it but in a very limited fashion. It is only good for SNMP-based alerts.""It's scalable, but it could be simplified because it's not completely easy.""It is very slow to pick the dynamics of the network.""The pricing is expensive.""If your network is on SolarWinds, and you notice that the traffic is bad because it says "user downloading a heavy file," it doesn't indicate which endpoint is downloading those heavy files. SolarWinds doesn't have the tools to be able to handle this kind of situation. You can just notice through your network device that the traffic is becoming overwhelming or heavy, but you cannot go inside and get more details related to the endpoint where it is happening. We would like SolarWinds to be able to handle this kind of situation and even manage the traffic inside a network from the endpoint to the network device. These would be good enhancements. It is mostly stable. The problem comes only when we want to add another SolarWinds model. SolarWinds has so many models, and sometimes when we want to add other models on the platforms that are reserved for our firm, it freezes. When this happens, we have to create a new VM for that model.""The Atlas module that is used for building the network map is very bad.""I would like to see more artificial intelligence capabilities."

More SolarWinds NetFlow Traffic Analyzer Cons »

Pricing and Cost Advice
"We have a desire to increase our use. However, it all comes down to budget. It's a very expensive tool that is very difficult to prove business support for. We would like to have two separate networks. We have our corporate network and PCI network, which is segregated due to payment processing. We don't have it for deployed in the PCI network. It would be good to have it fully deployed there to provide us with additional monitoring and control, but the cost associated with their licensing model makes it prohibitively expensive to deploy.""The pricing is very good. It's less expensive than many of the tools out there.""The license is based on the concurrent IP addresses that it's investigating. We have 9,800 to 10,000 IP addresses.""There are additional features that can be purchased in addition to the standard licensing fee, such as Cognito Recall and Stream.""At the time of purchase, we found the pricing acceptable. We had an urgency to get something in place because we had a minor breach that occurred at the tail end of 2016 to the beginning of 2017. This indicated we had a lack of ability to detect things on the network. Hence, why we moved quickly to get into the tool in place. We found things like Bitcoin mining and botnets which we closed quickly. In that regard, it was worth the money.""From a pricing perspective, they are very commercially competitive. From a licensing perspective, just be conscious that some of their future cloud solutions come with additional subscriptions. Also, if you're outside of the US, you will get charged freight for the device back to your country.""Vectra's licensing model could scale to our research network, which has multiple, 100-gigabit links.""Cost is a big factor, as always. However, I think we have a very good price–performance ratio."

More Vectra AI Pricing and Cost Advice »

"They charge for switches and some networking hardware, but everything else is free.""We have licenses per year. It is on a network device, so we pay for switches and firewalls. Everything else is included, e.g., computers, access points, and printers.""The value is there. It's not that expensive per device and it's licensed per device. Unlike some of the other tools that I use, it's not real expensive. It's a good value for the price.""The pricing is by device. We have 75 devices, which is a little more than we really need. With school and volume discounts, it is still a little over $16,000 annually. Our WiFi access points are not being billed, but all our switches and routers are.""The pricing is fair for the value and time saved that you get out of it. The larger you go, the more sense it makes per device, because as you hit different pricing tiers, it becomes much more affordable per device.""The pricing is pretty reasonable for what we get. It's billed by certain, core network devices that it monitors, but I'm not billed for all the devices it monitors. For example, wireless access points and small things like that, throughout the network, are not billed.""Its pricing is very reasonable. We had looked at other solutions where you pay based on the amount of traffic that was filtered through and analyzed. With Auvik, we pay by a billable device. We're not paying based on every single device we have. For one of the locations I have, one network element would likely be a billable device. So, every billable device has a network element, but not every network element is a billable device. If I have a location that has 50 network elements, then maybe 30 of them are billable devices. PCs, VoIP phones, and access points are monitored at no charge.""Their licensing model is basically per managed device. You pay X amount per managed device, and managed devices are limited to switches, routers, firewalls, and wireless LAN controllers. So, the only things that we pay for are our switches, routers, firewalls, and wireless LAN controllers, but there are orders of magnitude more devices that Auvik manages that we don't pay for. It also manages servers, workstations, and phones. Auvik will gather KPIs from anything that is connected to the network if it can be managed via a standard like SNMP or WMI. There are no costs in addition to the standard licensing fees."

More Auvik Pricing and Cost Advice »

"While the pricing is fair, it could be better.""We pay yearly, and we are happy with its price.""The price of this solution is exceptional.""The pricing is reasonable."

More SolarWinds NetFlow Traffic Analyzer Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Network Traffic Analysis (NTA) solutions are best for your needs.
554,873 professionals have used our research since 2012.
Questions from the Community
Top Answer: Cognito Streams gives you a detailed view of what happens in the network in the form of rich metadata. It is just a… more »
Top Answer: Cost is a big factor, as always. However, I think we have a very good price–performance ratio.
Top Answer: If you hit a certain number of rules, triage filters, or groups, the UX responds more slowly. However, we have a complex… more »
Top Answer: One of the best things about Auvik, and it's why it's one of my go-to products, are the remote access capabilities… more »
Top Answer: The pricing is fair for the value and time saved that you get out of it. The larger you go, the more sense it makes per… more »
Top Answer: The logging features could be a little bit better polished, although that aspect is relatively new. It comes in as raw… more »
Top Answer: I have worked from 1973 with all kind of systems in large enterprises across the world. And have experience with all… more »
Top Answer: For managing the traffic, it provides you a response about whether the traffic is down, up, or heavy, which is a very… more »
Comparisons
Also Known As
Vectra Networks, Vectra AI NDR
Netflow Traffic Analyzer
Learn More
Overview

Vectra® is the leader in network detection and response – from cloud and data center workloads to user and IoT devices. Its Cognito® platform accelerates threat detection and investigation using artificial intelligence to collect, store and enrich network metadata with the right context to detect, hunt and investigate known and unknown threats in real time. Vectra offers three applications on the Cognito platform to address high-priority use cases. Cognito Stream™ sends security-enriched metadata to data lakes and SIEMs. Cognito Recall™ is a cloud-based application to store and investigate threats in enriched metadata. And Cognito Detect™ uses AI to reveal and prioritize hidden and unknown attackers at speed.

Auvik is cloud-based software that simplifies and automates network monitoring and management to give you complete network visibility and control.

Designed to deploy in minutes, you’ll resolve problems faster than ever with real-time network mapping and inventory, powerful troubleshooting features, deep network traffic insights, automated config backups and restore, and more. https://www.auvik.com/get-free-trial

SolarWinds Netflow Traffic Analyzer enables you to capture data from continuous streams of network traffic and convert those raw numbers into easy-to-interpret charts and tables that quantify exactly how the corporate network is being used, by whom, and for what purpose.
Offer
Learn more about Vectra AI
Learn more about Auvik
Learn more about SolarWinds NetFlow Traffic Analyzer
Sample Customers
Tribune Media Group, Barry University, Aruba Networks, Good Technology, Riverbed, Santa Clara University, Securities Exchange, Tri-State Generation and Transmission Association
Information Not Available
Oceaneering International, Asia Pacific Network Information Centre, 335th Signal Command, Immofori
Top Industries
REVIEWERS
Financial Services Firm19%
Retailer19%
Manufacturing Company13%
Mining And Metals Company13%
VISITORS READING REVIEWS
Comms Service Provider26%
Computer Software Company24%
Government6%
Financial Services Firm6%
REVIEWERS
Manufacturing Company13%
Computer Software Company13%
Energy/Utilities Company13%
Healthcare Company13%
VISITORS READING REVIEWS
Computer Software Company30%
Comms Service Provider15%
Government9%
Financial Services Firm7%
REVIEWERS
Manufacturing Company30%
Financial Services Firm20%
Real Estate/Law Firm10%
Non Tech Company10%
VISITORS READING REVIEWS
Comms Service Provider26%
Computer Software Company23%
Government9%
Financial Services Firm5%
Company Size
REVIEWERS
Small Business18%
Midsize Enterprise6%
Large Enterprise76%
VISITORS READING REVIEWS
Small Business25%
Midsize Enterprise22%
Large Enterprise52%
REVIEWERS
Small Business53%
Midsize Enterprise26%
Large Enterprise21%
VISITORS READING REVIEWS
Small Business56%
Midsize Enterprise14%
Large Enterprise30%
REVIEWERS
Small Business35%
Midsize Enterprise5%
Large Enterprise60%
Find out what your peers are saying about Auvik vs. SolarWinds NetFlow Traffic Analyzer and other solutions. Updated: November 2021.
554,873 professionals have used our research since 2012.

Auvik is ranked 3rd in Network Traffic Analysis (NTA) with 21 reviews while SolarWinds NetFlow Traffic Analyzer is ranked 6th in Network Traffic Analysis (NTA) with 11 reviews. Auvik is rated 9.0, while SolarWinds NetFlow Traffic Analyzer is rated 7.6. The top reviewer of Auvik writes "Incredibly easy to use, cuts our resolution time, and automatically takes care of configuration management and backups". On the other hand, the top reviewer of SolarWinds NetFlow Traffic Analyzer writes "Alerts us whenever a device is down but it cannot do metric performance monitoring". Auvik is most compared with LogicMonitor, Meraki Dashboard, BMC TrueSight Operations Management, Ixia Hawkeye and Zenoss Service Dynamics, whereas SolarWinds NetFlow Traffic Analyzer is most compared with Cisco Stealthwatch, Zabbix, Centreon, Plixer Scrutinizer and Fortinet FortiSIEM. See our Auvik vs. SolarWinds NetFlow Traffic Analyzer report.

See our list of best Network Traffic Analysis (NTA) vendors.

We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.