Home
Installation, Deployment, and Upgrade
Installing Unica Discover involves planning and preparing your environment, installing and configuring prerequisite software, obtaining the Unica Discover installation files, and running the Unica Discover installer.
Discover Network Capture Application Manual
Packet Forwarder Overview
The Packet Forwarder is used to capture and forward hits to a cloud-based DNCA that is operating on a virtual machine.
The percentage of alien packets

Installation, Deployment, and Upgrade
Installing Unica Discover involves planning and preparing your environment, installing and configuring prerequisite software, obtaining the Unica Discover installation files, and running the Unica Discover installer.
- Installation and Deployment Manual
- Discover Network Capture Application Manual
  - Discover Network Capture Application Overview
    Network Capture Application from Discover captures and records the complete interaction between the visitor and the web application environment by using a network tap or network switch spanning port. The Network Capture Application software features the following benefits:
  - Installing the Network Capture Application
    The following instructions can be used to assist the installation of your Network Capture Application software.
  - Configuring the DNCA
    The Unica Discover Network Capture Application can be configured through a web-based console or through the configuration files that are stored on the DNCA server. The following information guides you on how to configure the DNCA.
  - Upgrade for DNCA
    It is recommended that you always use the latest version of the Unica Discover Network Capture Application suitable for your version of Unica Discover.
  - Packet Forwarder Overview
    The Packet Forwarder is used to capture and forward hits to a cloud-based DNCA that is operating on a virtual machine.
    - Installing the Packet Forwarder
      The Discover Packet Forwarder packet forwarder is used to forward web traffic that is transmitted between a client and a cloud-based web server to a cloud-based DNCA.
    - Packet Forwarder Configuration
      The Unica Discover Packet Forwarder can be configured through the configuration files that are stored in the installation directory.
    - The percentage of alien packets
    - The percentage of dropped packet connections
    - If non-zero, packets are being dropped because they exceed the max size limit.
    - Disabling Packet Checksum Validation
    - Packet Forwarder Commands
      You can run the Packet Forwarder utility with command options.
    - Measuring dropped packets
      The DNCA provides several metrics to help identify dropped network packet conditions. These metrics are only data points to help to assess likely causes for dropped packets.
    - Uninstall the Packet Forwarder
      If needed, you can complete the following instructions to uninstall the Packet Forwarder software.
    - How does the DNCA handle duplicate TCP packets
  - SSL Keys
    For decrypting transmissions by using the SSL protocol, the Unica Discover Network Capture Application must be provided the SSL keys in use in the transaction stream.
  - Performance Measurement
    Performance measurement provides details on the Network Capture software performance and timestamp measurements.
  - Configuring DNCA on Red Hat Enterprise Linux™ (RHEL)
    The following sections contain important information for configuring DNCA in a Red Hat Enterprise Linux™ environment:
  - DNCA monitoring
    You can monitor the passive capturing to diagnose performance issues.
  - Overview of DNCA maintenance
    The maintenance utility performs routine maintenance and logging tasks for Discover DNCA. You can use the utility to help maintain the ability of the DNCA to perform DNCA.
  - DNCA frequently asked questions (FAQ)
    The following content contains frequently asked questions or scenarios that can be used to help isolate or fix an issue with your Network Capture Application.
  - Downloading Privacy Configuration
  - Enabling web console access through a single IP address
    You can specify a single IP address which can access the web console. Limiting access to a single IP address helps to prevent unauthorized access through an unknown system.
  - Applying authentication when accessing the web console
    You can improve security by enabling authentication to the web console.
- Unica Discover Session Archiving Installation Guide
  As you prepare for an installation, you need to gather some items, review hardware and software requirements, and then you can perform the installation.
- Discover Upgrade Manual

The percentage of alien packets

About this task

The percentage of packets that are encountered in the capture stream that the DNCA cannot associate with an existing connection. When capture is first started, this number is expected to be a high percentage. But as capture continues to associate and process hits, this figure must drop.

Analysis: If this metric is marked in red, the quality of the data that is sent to the DNCA or the TCP connections must be improved. Here are some suggested approaches.

Procedure

Apply traffic filters: If you not done already, you can apply filters to remove unwanted traffic that is being forwarded to the DNCA. Traffic filters can be applied to port ranges or IP addresses.
- See DNCA Web Console - Interface Tab.
Capture Mode: If the DNCA is configured to be in BusinessIT mode, more data is captured, which cannot be important. Alien packet counts can drop if you switch the DNCA to capture in Business mode. See Pipeline Settings.
After you make changes to the above, you must restart the DNCA. See Installing the Network Capture Application.
Check hardware: The SPAN port that is used to deliver hits to the DNCA can be dropping some, due to oversubscription. Verify with your IT department that data is not being lost by the SPAN port.
- High alien packet counts and missing pages can be associated with improperly functioning NIC card on the machine hosting the DNCA. You must also review and update, if needed, the driver for the NIC card.
Bad checksums: If there are a significant number of bad checksums, you must check with your IT staff to verify that the source of the traffic that is forwarded to the DNCA is generating valid checksums.
- To test the validity of the checksums in the packet data, you can enable checksum validation through the Interface tab. Validation is enabled by default. See DNCA Web Console - Interface Tab.
Additional information can be available in the statistics log, which you can download from the DNCA web console. See DNCA Web Console - Backup-Logs Tab.
You can enable archiving in the DNCA, which delivers raw network packets to the designated archive and can be useful for debugging issues in session data.
- See DNCA Web Console - Backup-Logs Tab.

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.