Cisco Firewalls are exporting traffic information through syslog. Also Cisco Routers are exporting traffic information through netflow. What is the difference between these two technologies? Which technology should I use do get the correct traffic information.
What are all the advantages of Firewall Syslog traffic analysis over Router netflow traffic analysis? Any effects on these analysis if we have NAT in our setup?