Education EMEA

Reliable Network Monitoring and Anomaly Detection in University Environment

Masaryk University, located in Brno, is the second-largest public university in the Czech Republic and the leading higher education institution in Moravia. At present it comprises nine faculties with over 200 departments, institutes and clinics. Masaryk University is recognized as one of the most important teaching and research institutions in the Czech Republic and a highly-regarded Central European university.


  • 5000+ employees
  • 40 000+ students
  • 15 000+ computers
  • Dozens of locations
  • Hundreds of servers
  • 2x10Gbps connectivity
  • 10Gbps university backbone
  • Network visibility
  • Security assurance
  • Incident handling capability

Key Benefits

  • Outstanding network visibility and reporting
  • Automatic detection of security issues and policy violations
  • Automation of CSIRT processes and tasks
  • Utilization of Flowmon in research projects and education

Deployed products

  • Flowmon ADS
  • Flowmon Collector
  • Flowmon Probe


The IT infrastructure of Masaryk University, with its nine faculties, three institutions and the campus, is located over whole Brno city and near surroundings. The network core is operated on 10Gbps by Institute of Computer Science. The security assurance is guaranteed by CSIRT-MU – accredited member of the European security community Trusted Introducer (TERENA). CSIRT-MU team is responsible for monitoring of in/out Internet traffic, connection of faculties and institutions to backbone, technology network, VPNs, eduroam and critical servers.


CSIRT-MU operates 25 Flowmon Probes to assure monitoring of all critical points in university network. Traffic statistics are stored on 6 different collectors to guarantee redundancy and separate development/student collectors from the operational ones. The total Flowmon Collector capacity is 40TB. Flowmon ADS processes the network traffic statistics from selected Probes (e.g. Internet traffic, selected faculties) and automatically detects security related events and policy violations. The incident handling process is automated so events are being reported to incident handling system Request Tracker operated by CSIRT-MU.

“Although we love to create new security monitoring tools, we also need a reliable cornerstone of the monitoring infrastructure for a routine operation of a university CSIRT. Furthermore, we welcome professional support that comes with Flowmon solution. It allows us to focus on the core of our business.”

Jan Vykopal
CSIRT-MU (Computer Security Incident Response Team) team leader

Flowmon ADS

Detect and Stop ransomware!

Launch more

Request free trial

Get no-obligation 30-day trial of Flowmon in your network.

Get your trial today