NETWORK VISIBILITY NETWORK PACKET BROKER COMPARISON TABLE

Similar documents
NETWORK VISIBILITY NETWORK PACKET BROKER COMPARISON TABLE KEY VISIBILITY ATTRIBUTES SYSTEM SPECIFICATIONS SYSTEM CAPACITY.

VISION ONE: SECURITY WITHOUT SACRIFICE

VISION ONE: SECURITY WITHOUT SACRIFICE

ngenius 6002 Packet Flow Switch

ngenius 6010 Packet Flow Switch

ngenius 6002 Packet Flow Switch

Mobil Core Monitoring Session aware load balancing of GTPv1 and GTPv2 traffic to multiple probes

ngenius 6010 Packet Flow Switch

ngenius 5010 Packet Flow Switch

ngenius 5100 Packet Flow Switch

Ixia xstream TM 10. Aggregation, Filtering, and Load Balancing for 1GbE/10GbE Networks. Aggregation and Filtering DATA SHEET

Key Benefits Ixia xstreamtm 40 Fail -safe Inline Security NPB Offers Aggregation, Filtering, and Load Balancing for 10GbE/40GbE Networks

ngenius 4200 Series Packet Flow Switch

ngenius 2200 Series Packet Flow Switch

IXIA XSTREAM TM 40 DATA SHEET AGGREGATION, FILTERING, AND LOAD BALANCING FOR 10GBE/40GBE NETWORKS HIGHLIGHTS

Next Generation Hybrid Network Visibility Solution

Cisco Nexus Data Broker

VB120 Modular 1G/10G Packet Flow Switch

Ixia xbalancer. A Purpose-Built Load Balancer for 10G Networks. The Load Balancing Solution DATA SHEET. Highlights

IXIA VISIBILITY ARCHITECTURE Eliminating Blind spots

GTP Load Balancing. How to do GTP Load Balancing with Cubro Products. 27 Sep

Arista 7170 series: Q&A

TAP Aggregation-Network Visibility and Security

HP FlexFabric 5700 Switch Series

TRADEVISION HIGH PERFORMANCE MONITORING OF MULTICAST MARKET DATA FEEDS

The Smart Route To Visibility. GigaVUE H Series. High-density, High-scale Traffic Visibility Fabric Nodes

Data Sheet: GigaVUE HD Series

Corrigendum 3. Tender Number: 10/ dated

Cubro Packetmaster EX12

Anue Net Tool Optimizer 5273

Configuring WCCPv2. Information About WCCPv2. Send document comments to CHAPTER

Cubro Packetmaster EX48600

Cubro Packetmaster EX32/32(+)

Configuring Cisco Nexus 7000 Series Switches

Device Management Basics

Cubro Packetmaster EX48600

H3C S7500E-XS Switch Series FAQ

45 10.C. 1 The switch should have The switch should have G SFP+ Ports from Day1, populated with all

Cubro Sessionmaster EXA48600

INTELLAFLEX. Packet Aggregation Switching Solutions

Connection Logging. Introduction to Connection Logging

HP 5920 & 5900 Switch Series FAQ

Cisco Configuring Cisco Nexus 7000 Switches v3.1 (DCNX7K)

HPE FlexNetwork 5510 HI Switch Series FAQ

Connection Logging. About Connection Logging

Seminar: IT Security Design der neuen Art 2016 IXIA AND/OR ITS AFFILIATES. ALL RIGHTS RESERVED.

Overview of the NAM Traffic Analyzer

Cisco Virtual Networking Solution for OpenStack

User Plane Monitoring for a Mobile Network Operator (MNO)

ANIC Host CPU Offload Features Overview An Overview of Features and Functions Available with ANIC Adapters

vcenter Operations Management Pack for NSX-vSphere

Pass4sure q. Cisco Securing Cisco Networks with Sourcefire IPS

Cubro FlowVista Series

Ixia Net Optics ilink Agg xstream

IntellaFlex Packet Aggregation Switching Solutions

Acme Packet Net-Net 14000

Use Cases Application And Service Monitoring Eliminate contention for network data. Centralize Netflow/IPFIX Generation

Implementing the ERSPAN Analytics Feature on Cisco Nexus 6000 Series and 5600 Platform Switches

ngenius 4200 Series Packet Flow Switch

SOLO NETWORK (11) (21) (31) (41) (48) (51) (61)

S2250/S3250 NETWORK INTERFACE DEVICE

Cubro Sessionmaster EXA32100

BIG-IP TMOS : Implementations. Version

Request for Proposal (RFP) for Supply and Implementation of Firewall for Internet Access (RFP Ref )

SOLO NETWORK (11) (21) (31) (41) (48) (51) (61)

Configuring Cisco Performance Monitor

10 Gigabit Ethernet XM LAN Services Modules

Configuring SPAN. About SPAN. SPAN Sources

Cubro Sessionmaster EXA40 series

SOLO NETWORK (11) (21) (31) (41) (48) (51) (61)

Barracuda Link Balancer

Cisco SGE Port Gigabit Switch Cisco Small Business Managed Switches

Cisco RF Gateway 10 Supervisor Engine V-10GE

Datasheet. 10G 16-Port Managed Aggregation Switch. Model: ES-16-XG. Non-Blocking Throughput Switching. Maximum Performance and Low Latency

Datasheet. 8-Port 10G SFP+ Router. Model: ER-8-XG. 80 Gbps Aggregate Throughput. 10G Ethernet SFP+ Ports. Hot-Swappable Modular Power Supplies

Module 5: Cisco Nexus 7000 Series Switch Administration, Management and Troubleshooting

Use Cases Application And Service Monitoring Eliminate contention for network data. Centralize Netflow/IPFIX Generation

Arista 7160 series: Q&A

Device Management Basics

Implementing Cisco IP Routing

Cisco Next Generation Firewall Services

Cisco NCS 5011 Router Data Sheet

Gigabit Managed Ethernet Switch

Cisco Nexus 9200 Switch Datasheet

Configuring Ethernet Virtual Connections on the Cisco ASR 1000 Series Router

Interchassis Asymmetric Routing Support for Zone-Based Firewall and NAT

What is New in Cisco ACE 4710 Application Control Engine Software Release 3.1

Cisco SRW208 8-Port 10/100 Ethernet Switch: WebView Cisco Small Business Managed Switches

Configuring OpenFlow 1

High Availability Synchronization PAN-OS 5.0.3

IP Tunneling. GRE Tunnel IP Source and Destination VRF Membership. Tunnel VRF CHAPTER

Configuring Cache Services Using the Web Cache Communication Protocol

Gigabit Ethernet XMVR LAN Services Modules

Gigabit Ethernet XMVR LAN Services Modules

Design and Deployment of SourceFire NGIPS and NGFWL

powerhawk pro key features and BenefiTs spec sheet MULTI-USER LIVE NETWORK ANALYZER

PSGS-2610F L2+ Managed GbE PoE Switch

Configuring Local SPAN and ERSPAN

Cisco SRW Port Gigabit Switch: WebView Cisco Small Business Managed Switches

Introduction to Aruba Dik van Oeveren Aruba Consulting System Engineer

Transcription:

NETWORK VISIBILITY NETWORK PACKET BROKER COMPARISON TABLE Edge Edge Edge Edge Trade KEY VISIBILITY ATTRIBUTES Smart Drag and Drop Intuitive GUI Zero-Packet Loss Architecture Overlapping Filter Rules Automatically Handled by Visibility Engine SYSTEM SPECIFICATIONS Yes (2 stage) System Height (RU) 1 1 1 1 2 1 7 2 1 AC Redundant Power Supply (Hot Swap) DC Redundant Power Supply (Hot Swap) SYSTEM CAPACITY Max Backplane Capacity (Gbps) 6 720 3200 480 6 6 38 Max Number of 1Gb Ports 64 48 0 48 64 64 288 Max Number of 10Gb Ports 64 72 128 48 64 64 384 Max Number of Gb Ports 16 18 32 0 16 16 96 Max Number of Gb Ports 0 0 32 0 4 0 72 320 6 0 64 64 64 0 16 0 0 915-3637-01-5031 Rev C Page 1

MODULE TYPE Edge Edge Edge 1Gb Copper Port / Transceiver 1Gb SFP Port 10Gb Copper Transceiver 10Gb SFP+ Port 25Gb SPF28 Port Gb QSFP28 port can be converted into 4x10G, 4x25G, 1xG, 2x50G and 1xG 50Gb SPF28 Port Gb QSFP28 port can be converted into 4x10G, 4x25G, 1xG, 2x50G and 1xG Gb QSFP+ Port Cisco BIDI Gb CFP Gb QSFP28 Gb QSFP28 port can be converted into 4x10G, 4x25G, 1xG, 2x50G and 1xG INLINE SECURITY Supports inline deployment including full feature set for HA Inline configuration on web console Edge Trade Load balancing with spare Serial service chaining Customizable heart beat Link fault detection (LFD) 915-3637-01-5013 Rev C Page 2

Edge Edge Edge Edge Trade Negative heart beat Tool mandatory vs. optional (fail-closed vs. fail-open) Multiple network links tool sharing (VLAN port tag) Multiple network links tool sharing (MAC address) VLAN Translation during filtering (VSET) for inline Replacement during filtering (VSET) for out-of-band HA active-active HA active-standby Support inline and out-of-band simultaneously Asymmetric load balancing (client/host affinity) Multi-path (multiple criteria for different data paths) Load balance based on port speeds or weight Advanced Failure threshold of load balance group Configurable Set to 0 Set to 0 Set to 0 Support for tool with 2 or more ports (SSL decrypter) MPLS inner IP filtering for inline DEPLOYMENT OPTIONS Simplex (Double Your Ports) Fan-In Dependent Dependent 915-3637-01-5013 Rev C Page 3

Edge Edge Edge Fan-Out MANAGEMENT Cluster Management through Ixia Fabric (IFC) IFC Fabric Direct Connect IFC Fabric GRE Edge Indigo Pro for OAM&P (systems mgmt.) Trade RESTful API Role Based User Accounts TACACS+, RADIUS Authentication Syslog SNMP Traps Strong Password Event monitoring and Alarm Generation Link Status Trap Packet Counters and Statistics WebUI (HTML5) for System Access COMPLIANCE High security DoD and FIPS (Federal Information Processing Standard) compliant mode 1. FIPS 1-2 2. Common Criteria 3. DoD UCAPL FIPS Level 2 4.5 required FIPS Level 1 4.5 required NEBS Certified 5293 7303 915-3637-01-5013 Rev C Page 4

NETSTACK Three Stages of Filtering - Filter rules may be applied to ingress, dynamic, and/or egress traffic Filtering layer 2, layer 3 and layer 4 fields plus and pre-defined offset filters for GTP, MPLS, and VxLAN Counter Comparison - Ingress, Dynamic, Egress Edge Edge Edge Edge Trade (Deny By on output) MPLS/GTP Dynamic Filtering VxLAN VNI/Tunnel IP Dynamic Filtering Max # of General & Custom Rules Max # of Source IP Rules (unicast) Max # of Destination IP Rules (unicast) Max # of Multicast IP Rules (No wildcard / masking capability) Dynamic Filter Compiler / Intersection mode provides patented technology that automatically resolves filter rules to provide self-maintaining visibility Priority Based Filtering (PBF) provides ACL-like logic when filtering traffic. Usually used for Inline Source Port Labeling - Track packets easily by adding VLAN IDs to packets based on the source (ingress) port and remove them as they leave a packet broker via exit (egress) ports. 16k 4k 4k 4k 4k 8k 8k 8k 1k 8k 8k 8k 8k 1k 8k 4k per blade 1k per blade 1k per blade 3k 3k 3k 3k 3k 3k Dependent N/A 4k Dependent N/A 8k Dependent N/A 8k Dependent Yes (2 stage) 3k 3k 915-3637-01-5013 Rev C Page 5

VLAN Tagging per Port (Source Port Labelling) Edge Edge Edge Edge Trade VLAN Tagging per Dynamic Filter VLAN Un-tagging - per Port VLAN Un-tagging - Conditional Aggregation - Consolidate incoming traffic to optimize port usage and simplify filtering 1 : 1 1 : Many Many : 1 Many : Many Replication - Replicate traffic to multiple dynamic filters (ingress) or to multiple tools (egress) Load Balancing - Distributes traffic across tool ports Load balancing Standard (3 Tuple & 5 Tuple) Load Balance Tunneled IP (MPLS Based) Maximum Ports per Load Balancing Group PACKETSTACK Deduplication - Remove repeat data to deliver a unique stream to your tools so they can operate at their peak. Egress only 20 72 128 48 64 64 64 per Card Dependent 32 64 915-3637-01-5013 Rev C Page 6

Header Stripping - Detect and remove headers so data can be easily analyzed by security and monitoring (IPS, IDS, NGFW, etc.) tools that do not support such protocols Edge Edge Edge Edge Trade VLAN VxLAN - Standard UDP Port # VxLAN - Cisco ACI UDP Port # MPLS (L2VPN/VPLS with or without control word) Cisco Fabric Path PPPoE RSPAN / ERSPAN GTP (GTP-U) L2GRE/NVGRE LISP 802.1 BR VNTag Mac-in-Mac/PBB GENEVE L2TP GRE-MPLS (OTV) Mac-in-Mac/PBB GENEVE 915-3637-01-5013 Rev C Page 7

L2TP GRE-MPLS (OTV) Packet Trimming - Send only what security and monitoring tools need by cutting out the unnecessary information and reducing packet size Timestamping - Insert high-accuracy timestamps into every packet at ingress Edge Edge Edge Edge NTP PTP GPS 5293 Data Masking - Hide or overwrite sensitive or personally identifiable information (PII) before providing the data to analysis tools GRE Tunneling - Encapsulate and deencapsulate data to send and receive it from different sites and platforms within your environment. Trade Included with base License Tunnel Origination: L2GRE Tunnel Origination: ERSPAN Load Balancing on L2GRE Tunnel Group Tunnel Termination: L2GRE Tunnel Termination: ERSPAN NetFlow - generate NetFlow for tools without burdening network devices Network Processor Network Processor 915-3637-01-5013 Rev C Page 8

1G Burst Protection - allows monitoring tools to see everything without dropped packets when traffic exceeds tool bandwidth SECURESTACK SSL Decryption (Passive) - Get greater visibility by decrypting traffic to detect such malware, prevent data loss, monitor applications and more Active SSL - Decrypt and encrypt traffic that uses ephemeral key (TLS 1.3) Data Masking Plus - Mask sensitive data such as a credit cards, SSN's and email addresses using pre-defined patterns APPSTACK Application Identification - Define traffic filters to view or forward specific traffic patterns that you want to monitor, based on application type, operating system, transport protocol, and other criteria. Geolocation & tagging - Separate traffic by client or server location Edge Edge Edge Edge Trade Optional Regex IxFlow Generation - In addition to packet forwarding NetFlow information, optionally enhanced with application layer data (IxFlow), can be forwarded for matching traffic Packet Capture - Save traffic matching any filter as a pcap-format capture file with a user defined size 915-3637-01-5013 Rev C Page 9

AppStack Dashboard - Displays comprehensive network traffic information that provide real-time network traffic information. Edge Edge Edge Edge Trade Free AppStack Dashboard discover the benefits of AppStack with access to the AppStack Dashboard without the need of a license. ATI Subscription - Provides updates to application signature database, vital for AppStack to stay updated with emerging applications. MOBILESTACK GTP Correlation - Improve performance of QoS and QoE monitoring probes by offloading GTP session correlation 3GPP Support 4G LTE, 3G and 2G support Max Number of s GTP Load-balancing - Scale monitoring infrastructure by load-balancing GTP data plane traffic Location-aware filtering - Selectively send mobile network traffic for subscribers connected to a specific area of the network to monitoring probes. Subscriber sampling - Reduce costs by sending only a certain percentage of the subscriber traffic to the monitoring infrastructure 54 Million 915-3637-01-5013 Rev C Page 10

EPC filtering - Selectively sending traffic to probes based on traffic type (3G, 4G, VoLTE, etc) Edge Edge Edge Edge Trade Subscriber & Device Aware Fileringselectively sending traffic to probes based on subscriber or device type TRADESTACK Gap Detection - Quickly detect gaps in multicast data to recognize market feed network problems with alerts to other tools and systems. Feed and Channel Health - Simplify feed troubleshooting by monitoring channel performance and alerts Traffic statistics - Improve capacity planning by streaming metadata off Trade to analysis tools where network engineers can build up data on historical traffic patterns. Microburst Detection - Detect and remedy bursty network traffic, where small bursts can cascade into dropped data. Auto Feed Updates automatic updates of market feeds and channels Simple Feed Management feed channel configurations are auto populated * Edge supports Edgecore 5812 & Edgecore 7712 915-3637-01-5013 Rev C Page 11

Learn more at: www.ixiacom.com For more information on Ixia products, applications, or services, please contact your local Ixia or Keysight Technologies office. The complete list is available at: www.ixiacom.com/contact/info 915-3637-01-5031 Rev C Page 12

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback