Blog post

Cool Vendor Pick: Solarwinds Network Performance Monitor (DPI)

By Jonah Kowall | January 15, 2015 | 36 Comments

Pick of The WeekNPMDNPMMonitoringIT Operations

Happy new year to everyone, I just finished taking a week off post new years and I’m already hitting the road. On the research front we’ve published a new update to the RFP template for APM tools. Expect more refreshed and new content this month. Now on to the pick of the week (which is happening monthly).

SolarWinds released a pretty major update to their very popular Network Performance Monitor. This is one of the most popular tools out there to handle basic network monitoring needs, and it does so well. The product can also be extended to many other areas as well. Most implementations consist of SNMP polling of devices, syslog collection for faults, and many extend it towards netflow analysis. It’s also frequently coupled with SolarWinds Network Configuration Manager (NCM) for NCCM use cases. In the latest large update they did, they introduced some major new capabilities in version 11, these included the ability to do basic deep packet inspection (DPI). What this means is that SolarWinds can now observe packet level detail, instead of relying on vendors and devices to send it summarized data. The unique part of the solution is that it’s very flexible in the deployment models, the product can be placed on a dedicated device and span and tapped network traffic be sent to it (See : or you can deploy the sniffer as an agent on your servers. This allows for the understanding of detailed application network traffic along with the ever important measure of latency, the key metric in determining network performance. Solarwinds is doing this for very low cost, disrupting a market which otherwise has not been inexpensive to enter. Let’s have a look at the new product and what it can do:

In order to evaluate SolarWinds has always made it very easy to download and try the product. After the download the setup wizard is run, which needs a Microsoft Windows host and a SQL server for the product install. It also uses IIS since the product is web based. These screenshots and my lab testing were done back in October, but I’m getting around to the posting now.



There are lots of features which can be selected which enhance the capabilities of the product, here are some:




Once you login to the web interface you are presented with the dashboard. They setup the basic monitors for the SolarWinds server itself. Quality of Experience (QOE) is the method which is using the packet inspection capabilities, you can see that measured here.




Here are the details on the QOE for SQL server




Here the deployment is explained in the product, as we’ll go through setting up the agent on other hosts:







Some more detail on the various data captured with the QOE sensor, you’ll notice it’s summarized but you can see the response time by protocol for the host. Here you’ll see MSSQL, CIFS, and HTTP traffic being captured and reported upon.Image6



Additional data around transaction volume, data volume, and other views are presented in the dashboard.Image7

When you install a new sensor you can manage them all from this view:



You can also tune what is being captured from each sensor, you’ll notice there is a large array of standard applications which can be recognized



When you want to add a node, you can do so completely remotely and the agent is pushed as you can see below



Many people will ask what the overhead is, and the answer it that is depends. In production workloads based on the level of traffic being send and what you are analyzing there will be some CPU usage by the monitoring, but with today’s processors and computers it shouldn’t be more than a few percent utilization (4-6%). It also shouldn’t block any IO or introduce any latency unless it’s under very heavy load.


Overall this product is a good first move for SolarWinds to commoditize the ability to do decentralized deep packet inspection for network performance. We expect others to move as well, and bring the cost of these tools and solutions down significantly.

Next up will be Greylog2!

Leave a Comment


  • Great post ! I am addicted to PM apps and software. Love comparing them and finding solutions. Thank you for sharing !

  • GEMView Platforms for SolarWinds are modular, scalable, and integrated solutions designed to complement the SolarWinds suite of IT visibility technologies. The GEMView integrated platform solution bundles allow organizations to select one application to cover a current business need, or all applications as a consolidated monitoring solution.

    Three GEM model options allow customers to match the platform with the monitoring task. All models use high performance processors and storage, generous amounts of memory, and GMI run-time utility programs (RTUP) that control CPU core and thread usage, allowing consolidated platforms that contain multiple SolarWinds applications to perform within acceptable levels under full load on less hardware resources.

  • سئو says:

    Thank you for sharing 🙂

  • Bhanu Prasad says:

    What is the best way to gain a good understanding of MIBs, OIDs, and SNMP and learn how to create a customized monitoring environment??

  • Excellent, Thank for sharing.

  • What is the best way to gain a good understanding of MIBs

  • What is the best way to gain a good understanding

  • apetube says:

    Thank you for sharing 🙂

  • افزایش ممبر تلگرام بصورت واقعی ، هیدن ، فیک ، اد اجباری و ممبر کاملاً واقعی با تبلیغات پاپ آپ برای کانال های تلگرامی شما

  • Prajakta says:

    Great post, thanks for sharing

  • jhon jhon1 says:

    I will share to your post different website or friendz.this post rightly helpful for business work.continue

  • Great blog here! Additionally your web site lots up very fast! What host are you using? Can I am getting your affiliate hyperlink on your host.

  • This is a really good tip particularly to those new to the blogosphere. Short but very precise information Many thanks for sharing this one. A must read article!

  • akshay says:

    very informative.great work keep going

  • smart switch says:

    Great info,thanks for the write-up.

  • yourguide says:

    Nice post good explaination

  • Most doors automatically close on the latch. A burglar can easily unlock this with a simple credit card. To force open a single-point lock (a lock that is secured in one place in the door) is a breeze for any intruder
    باتوجه به اینکه امروزه اغلب مردم به صورت آنلاین و اینترنتی خرید می‌کنند و یک بخش عظیم کار ما فروش اینترنتی درب ضد سرقت است. همان طور که در تمامی محصولات نمونه های تقلبی و فیک در بازار است برای درب ضد سرقت نیز به این صورت است ولی ایمان ویندور نمایندگی فروش اینترنتی و حضوری درب ضد سرقت با قیمت مناسب و کیفیت عالی در سراسر ایران در خدمت شما عزیران است تا با فروش جنس اصل و با کیفیت به شما کمک کند.

  • kharid chador meshki ba foroshgahe khane hejabe sadaf
    forooshgahe khane hejabe sadaf anvae chador meshki ra erae midahad
    خرید چادر مشکی به صوت آنلاین از خانه حجاب صدف این امکان را برای شما فراهم کرده است تا در هرکجا که هستید بتوانید از مرکز معتبر چادر مشکی خود را تهیه کنید.

  • kharid chador meshki ba foroshgahe khane hejabe sadaf
    forooshgahe khane hejabe sadaf anvae chador meshki ra erae midahad
    خرید چادر مشکی به صوت آنلاین از خانه حجاب صدف این امکان را برای شما فراهم کرده است تا در هرکجا که هستید بتوانید از مرکز معتبر چادر مشکی خود را تهیه کنید.

  • درب ضد سرقت با کیفیت و ارزان را، با ما در اکباتان درب تجربه کنید

  • Rex Serramo says:

    I am continually looking online for ideas that can assist me. Thanks!

  • chikav says:

    It was useful. Put more content on the site. We are still eager

  • very informative.great work keep going

  • لباسشویی های سامسونگ امروزه در هر خانه ای پیدا میشوند ، کیفیت بالای این دستگاه باعث محبوبیت آن در ایران شده است .
    بعد از مدتی این دستگاه ممکن است نیاز به سرویس و تعمیر داشته باشد .
    برای گرفتن خدمات بهترین تعمیرگاه را انتخاب کنید