Stealthwatch Security Analytics Service on Cisco DNA Center User Guide, Release 2.3.7.0 and 2.3.7.3

About Stealthwatch Security Analytics Service on Cisco DNA Center

The Stealthwatch Security Analytics service on Cisco DNA Center, in conjunction with Cisco Stealthwatch, provides real-time monitoring of all network traffic.

Note

Cisco Stealthwatch is also known as Cisco Secure Network Analytics.

When you use the Stealthwatch Security Analytics service to enable Encrypted Traffic Analytics, you can enhance the protection of your network against encrypted threats without decrypting the traffic.

The Stealthwatch Security Analytics service on Cisco DNA Center automates the provisioning of network elements (based on best practices) so that they send data to Cisco Stealthwatch, enabling you to gain more visibility, and improving your malware detection capabilities.

With Stealthwatch Security Analytics, you can do the following:

Assess what parts of the network are ready for deployment.
Enable Stealthwatch Security Analytics.
Monitor the status of deployment.
Monitor up to 1000 devices per site.

Stealthwatch Supported Versions

The following table lists the minimum software version and required licenses for Stealthwatch.


Product Family	Minimum Version	Product Components Required	License/Capacity Required
Stealthwatch Enterprise	7.0	Stealthwatch Management Console Flow Collector	See Stealthwatch Management Console VE and Flow Collector VE Installation and Configuration Guide.

Stealthwatch Security Analytics Supported Devices

Supported Devices for Enabling Encrypted Traffic Analytics

The following table lists the supported devices, minimum version, and license requirements for enabling Encrypted Traffic Analytics.

Note

Some devices support Encrypted Traffic Analytics in addition to Flexible NetFlow. For those devices, you can opt out of Encrypted Traffic Analytics by switching the ETA Telemetry toggle to Off, in which case only Flexible NetFlow is enabled.


Product Family	Minimum Version	License Required
Cisco Catalyst 9300 Series Switches	Cisco IOS XE Release 16.9.1	Cisco DNA Advantage
Cisco Catalyst 9400 Series Switches	Cisco IOS XE Release 16.9.1	Cisco DNA Advantage
Cisco 4000 Series Integrated Services Routers	Cisco IOS XE Release 16.6.4	Either of the following: Cisco DNA Advantage SEC/K9
Cisco 1000 Series Aggregation Services Routers	Cisco IOS XE Release 16.6.4	Either of the following: Cisco DNA Advantage SEC/K9

Supported Devices for Enabling Flexible NetFlow

The following table lists the supported devices and the minimum version and license requirements for enabling Flexible NetFlow.


Product Family	Minimum Version	License Required
Cisco Catalyst 9200 Series Switches	Cisco IOS XE Release 16.9.1	Cisco DNA Advantage
Cisco Catalyst 3850 Series Switches	Cisco IOS XE Release 16.9.1	Cisco DNA Advantage
Cisco Catalyst 3650 Series Switches	Cisco IOS XE Release 16.9.1	Cisco DNA Advantage

Bias-Free Language

Book Title

Stealthwatch Security Analytics Service on Cisco DNA Center User Guide, Release 2.3.7.0 and 2.3.7.3

Chapter Title