We performed a comparison between Arista NDR and Auvik Network Management (ANM) based on real PeerSpot user reviews.
Find out in this report how the two Network Traffic Analysis (NTA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We appreciate the value of the AML (structured query language). We receive security intel feeds for a specific type of malware or ransomware. AML queries looking for the activity is applied in almost real-time. Ultimately, this determines if the activity was not observed on the network."
"Arista NDR's scalability is very good, making it easy to add more hardware components. You can order additional hardware and integrate it by stacking it with the existing setup. This feature cannot be seen in other NDR tools."
"This solution’s encrypted traffic analysis helps us stay in compliance with government regulations. It is all about understanding data exfiltration, what is ingressing and egressing in our network. One common attack vector is exfiltrating data using encryption. My capabilities to see potential data exfiltration over encrypted traffic is second to none now."
"The query language makes it easy to query the records on the network, to do searches for the various threat activities that we're looking for. The dashboard, the Security Knowledge Graph, displays information meaningfully and easily. I am able to find the information that I want to find pretty quickly."
"This solution help us monitor devices used on our network by insiders, contractors, partners, or suppliers. Its correlation and identification of specific endpoints is very good, especially since we have a large, virtualized environment. It discerns this fairly well. Some of the issues that we have had with other tools is we sometimes are not able to tell the difference between users on some of those virtualized instances."
"The most valuable feature is the ability to see suspicious activity for devices inside my network. It helps me to quickly identify that activity and do analysis to see if it's expected or I need to mitigate that activity quickly."
"The interface itself is clean and easy to use, yet customizable. I like that I can create my own dashboards fairly easily so that I can see what is important to me. Also, the query language is pretty easy to use. I haven't needed to use it a ton, but as I need to go in and do different queries based on their requests, it has been fairly simple to use."
"The most valuable portion is that they offer a threat-hunting service. Using their platform, and all of the data that they're collecting, they actually help us be proactive by having really expert folks that have insight, not just into our accounts, but into other accounts as well. They can be proactive and say, 'Well, we saw this incident at some other customer. We ran that same kind of analysis for you and we didn't see that type of activity in your network.'"
"The solution provides detailed device information, including serial numbers, configurations, IP, warranty status, and when the device was purchased. This is very helpful when it comes to replacing old devices."
"Auvik has a dynamic mapping feature. Once you get things loaded, it will show you how everything is connected. It also shows the alerts on that map, making it a very quick and human-readable way to dig into it. Overall, that visualization is really nice, especially the dynamic facet."
"The stand-out feature is the automated config backup on networking devices. This automation is handy in a bind when a machine crashes, and you need to pull the config out of Auvik."
"A simple site view with the associated devices populating as things to add to or remove from the network is valuable. It's also nice to have it integrated with our ticketing system to create tickets in certain cases for devices that go down or have some high-level alerts, such as high CPU or overtemperature."
"I like the feature that allows us to remote access and remote troubleshoot many of the devices, including terminal Windows."
"Auvik's auto-detection feature is something I haven't seen in other monitoring systems. We can keep track of our internal device tables to map the devices on the network. The diagram saves us a lot of time. Usually, our new customers don't provide much information about their networks, so we need to spend a lot of time logging into every single device, going into the CDP and LLDP, making nodes, building diagrams, and adding more information. Auvik does it instantaneously."
"We like the alerts, the network mapping, and the backup of configurations."
"In the past, I would manually input the credentials and IP address of a single device from my machine and access the device, which took a lot of time. A task that previously took 40-45 minutes can be completed in less than five minutes with Auvik. It reduces the time needed to check a device for a single company, so we can act quickly before a disaster happens."
"I would like to see the capability to import what's known as STIX/TAXII in an IOC format. It currently doesn't offer this."
"They've been focused on really developing their data science, their ability to detect, but over time, they need to be able to tie into other systems because other systems might detect something that they don't."
"One thing I would like to see is a little bit more education or experience on AWS cloud for their managed services team. We've explained how we have the information set up, that the traffic coming in goes to the AWS load balancer and then gets sent on to our internal servers... but when I get notices they always tell me this traffic is coming from the IPs belonging to the load balancers, not the source IPs. So a little bit more education for their team about how AWS manages the traffic might help out."
"While the appliance is very good, and I think they're working on it, it would probably help if they integrated the management team cases into the appliance so that everything we are working on with them would be accessible on our platform, on the dashboard, on the portal. Right now, Awake is just an additional team that uses the appliance that we use and then we communicate with them directly. Communication isn't through the portal."
"Awake Security needs to move to a 24/7 support model in the MNDR space. Once they do that, it will make them even better."
"When I looked at the competitors, such as Darktrace, they all have prettier interfaces. If Awake could make it a little more user-friendly, that would go a long way."
"I would like to see a bit more in terms of encrypted traffic. With the advent of programs that live off the land, a smart attacker is going to leverage encryption to execute their operation. So I would like to see improvements there, where possible. Currently, we're not going to be decrypting encrypted traffic. What other approaches could be used?"
"Arista NDR needs to open legal offices to be closer to customers and partners. It needs more visibility in the NDR market in the Middle East. While they are doing well, they lack sufficient engineers. They need to hire more engineers to meet the demand and expand their presence. The current team is good but not enough to fully capture the market."
"When it tries to build the topology, it does it in a way that is usually incorrect. It cannot validate VLANs correctly, and it is a bit cumbersome. When we have a known topology, it makes it completely different. The network maps are not accurate."
"They need to improve the reporting system. They still don't have a proper reporting system in Auvik. They have built a dashboard in Power BI using APIs, but they should build some sort of report within Auvik itself. If Auvik fixes the reporting or comes up with a good reporting module, it will change the game."
"When I change IP addresses on a device or on a server, I have to wait for Auvik to figure out that change. It will tell me the device is offline until Auvik scans the whole subnet again and finds it. If I change 25 devices, I'll get 50 emails in a short time because they've gone offline."
"I want to see improvement around backups; we had a case where we created a ticket for online support, and they were able to set up backups for one of our devices, but they were unwilling to do the same backup script with a different device. The script uses the same code, just a different model number, and the engineers weren't willing to add it to the other model."
"Two weeks ago, we were able to access the support chat via a small button on the bottom right side of the screen. Now, that button has gone away... it has become pretty difficult to access support..."
"We use a service called Tailscale, a peer-to-peer private networking tool. My biggest issue with Auvik was getting it to scan devices across the Tailscale network. I suspect it's not supported there. That would be a valuable extension for us."
"I would like to see more extensive syslog capabilities. It can ingest syslogs and I think it can alert based on quantities of messages. You can also look back at some of the messages, but it's not a forensics level syslog."
"Price sensitivity is an issue in the country where we use Auvik because of our exchange rate. It would be helpful if they could offer a slightly more affordable price in this region. I'd also like to see Auvik introduce more AI-driven features."
More Auvik Network Management (ANM) Pricing and Cost Advice →
Arista NDR is ranked 8th in Network Traffic Analysis (NTA) with 14 reviews while Auvik Network Management (ANM) is ranked 3rd in Network Traffic Analysis (NTA) with 139 reviews. Arista NDR is rated 9.0, while Auvik Network Management (ANM) is rated 8.8. The top reviewer of Arista NDR writes "Gives us network layer visibility into things that may not be covered by other monitoring tools, such as shadow IT". On the other hand, the top reviewer of Auvik Network Management (ANM) writes "Enables us to get on top of issues before they become an outage". Arista NDR is most compared with Palo Alto Networks Advanced Threat Prevention, Vectra AI, Trend Micro Deep Discovery and Cisco Secure Network Analytics, whereas Auvik Network Management (ANM) is most compared with PRTG Network Monitor, LogicMonitor, SolarWinds NPM, Zabbix and Domotz. See our Arista NDR vs. Auvik Network Management (ANM) report.
See our list of best Network Traffic Analysis (NTA) vendors.
We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.