Post on 07-May-2015
description
powered by
Net Optics, Inc. Corporate Overview
Intelligent Access and Monitoring
Architecture Solutions
N. America
59% EMEA 18%
APAC 16%
BRIC 7%
Revenue by Geography
Net Optics Overview
• Financial, Telco, Enterprise, Government, Healthcare
• 7,500 Global Deployments
• US Offices: New York, Atlanta, Seattle, Chicago, Texas, D.C.
• Global Offices: Germany, Israel, China, Australia, Netherlands
• 85% of the Fortune 100
• 52% of the Fortune 500
Global Customers
• Founded in 1996, Private, Self-Funded
• 65 Quarters of Growth & Profitability
• Strong Management Team
• Headquarters & Manufacturing: Silicon Valley, USA
• First Acquisition Completed 2011
Highlights
• 67% Worldwide Channel
• 15% OEM/Partner Relationships
• 18% Direct
Go to Market Strategy
• Four new inventions each year
• 20+ patents and patent pending applications
Technology
2010 & 2011
Awards
Media
Select Global Customers
Enterprise Telco Financial Healthcare Government
4 4 Access Distribution Core Data Center
Aggregation
Net Optics Position in the Network
Regeneration
Director™ Network Taps
Protocol Analyzers IPS Forensics Performance Data Loss Prevention VoIP Analyzer
Access
A
pp
lica
tio
n L
ayer
To
ols
N
etw
ork
Application Performance
Monitoring
Bypass Switches Virtual Taps
Management
xBalancer
5 5
Virtualization Control Access Monitoring Management
Net Optics Total Visibility Architecture
Bypass Switches
Intelligent Taps
Network Taps
Phantom™
Virtualization
Tap
Packet Filtering
DPI / Pattern Match
Aggregation
Regeneration
Time Stamping
Load Balancing Packet Ordering
Remote Status
Features
Port Aggregators
xBalancer™
iLink Agg Xstream
iLink Agg
Director™
Phantom™ HD
Director xStream
Director xStream Pro
Spyke™
appTap™ Indigo Pro™
Flex Tap
6 6
Passive
Network
Access
The term “passive” means having no effect on traffic—no latency, IP address, no packets added, dropped or manipulated,
and no link failure. Traffic may be collected from wired networks via hubs, SPAN ports, in-line devices or Taps. Net Optics’
innovative family of access products enables companies to access and monitor their network using the latest Intrusion
Detection and Prevention Systems, Protocol Analyzers, and Network Probes, with 24/7 passive network access and 100%
visibility.
Flagship Product Key Benefits
FLEX TAP (fiber) 1G, 10G, 40G
100G FlexTap
• High Density Design saves rack space,
All-optical design, All split ratios
available, 24 Taps in 1U
Copper TAP (Zero Delay)
Gig Zero Delay Tap
• Passive copy of traffic
• Zero Delay ensures no traffic loss
Bypass Switching
iBypass HD
• Failsafe/failover for up to eight tools
• High availability network
Regeneration
10 GigaBit Regeneration Tap
• Replicates traffic for up to eight
monitoring tools
Aggregation
iTap Dual Port Aggregator
• Aggregation and tool sharing
Access Solutions
7 7
Switch
Copper TAP
Benefits
• Full-duplex access with zero impact on
network traffic around the clock
• 100% visibility to link traffic for security and
network monitoring tools
• Plug-and-play — no configuration required
• Permanent access: no need to break the
link each time you need to remove tool
• Forwards important L1 and L2 errors
• Dual power supplies: keeps the network
link up and running in case of power failure
Firewall
Analyzer
Switch
Network TAP (Test Access Point) is a hardware device
which is used to provide passive access to a data
stream over the wired network link. It passes the original
traffic between devices connected to “input” ports and at
the same time makes a copy of this traffic and sends it to
devices connected to “output” ports, enabling a secure
access for monitoring and analyser tools.
http://www.netoptics.com/Copper-TAP
8 8
Fiber TAP
Benefits
• Future proof: 1G, 10G, 40G and 100G!
• 100% visibility to link traffic for security and
network monitoring tools
• Plug-and-play — no configuration required
• Permanent access: no need to break the
link each time you need to remove tool
• Forwards important L1 and L2 errors
• Data center friendly:
• no power supplies – keeps the
network up and running in 100% of
cases!
• Small, compact and lightweight:
24 TAPs into 1U chassis!
** Available in MTP version also
http://www.netoptics.com/FlexTAP
9 9
Regeneration Tap
Benefits
• View 100% of traffic — including
Layer 1 and Layer 2 errors
• Replicate the traffic to 2,4 or 8 tools
• Enables sharing traffic access
among groups without conflicts
• Simplified plug-n-play deployment
with no device management needed
• Media conversion: SFP modular
device – deploy any tool any time
(copper, fiber, 1G, 10G)
• Redundant power supplies:
keeping the link up and running in
case of power failure
Switch
RMON
Switch
Firewall
Protocol
Analyzer
Traffic
Recorder
IDS
10 10
IDS
Aggregation TAP
Features
• View 100% of traffic — including
Layer 1 and Layer 2 errors
• Aggregate different network
segments into single output
• 1G buffer memory: ensures that
all packets are forwarded
• Reduce costs: lowers the number
of tools needed to be deployed
• Redundant power supplies:
enables traffic flow in case of
power failures
Switch Firewall
Analyzer
Switch
Management
Typically, full-duplex monitoring requires two NICs (or a dual channel NIC) – one interface for each side of
the full-duplex connection. A port aggregator Tap combines these streams, sending all aggregated data out
to a single passive monitoring port.
Dual port aggregator TAP
11 11
iBypas: intelligent bypass switching
Benefits
• Protects the network from IPS link,
application, and power outages
• SNMP (v2c, v3) traps indicate
status changes for system, link,
power, and threshold
• Intelligent Heartbeat packets:
continuous check of IPS health!
• Removes link downtime: ensures
traffic flow when appliance is offline
• Ensures alerts if monitoring devices
are offline or slow to respond
• Enhances monitoring security: no
IP address needed on network and
monitor ports
• RMON statistics and LCD display
• Redundant power supplies
Switch Firewall
IPS
Switch
http://www.netoptics.com/Port-Agg
12 12
iBypas 40G: industry first solution!
Benefits
• Full configuration access through
the user-friendly Web interface, CLI,
and SNMP V3 interface
• Hot swappable power supplies and
fans (1+1 redundancy)
• Intelligent Heartbeat packets with
one micro second resolution!
• View status for power, link, activity,
and utilization alarms
http://www.netoptics.com/40g-ibypass
13 13
Control As the pace of global economic activity accelerates, a comprehensive, intelligent
monitoring architecture is the key to a company’s agility, productivity and competitive
success. Now, the need for management control is universal.
Flagship Product Key Benefits
Load
Balancing xBalancer
• Distribute traffic to multiple tools for
parallel processing
10G
Monitoring
Switch Director xStream
• Combined feature set: Tap,
Aggregation, Regeneration, Static
Load Balancer
1G
Monitoring
Switch Director and Director Pro
• Aggregation, Regeneration
• Deep Packet Inspection
• L2-7 Filtering
10G
Aggregation iLink Agg xStream
• Aggregates multiple traffic streams for
monitoring by a single tool
1G
Aggregation iLink Agg
• Aggregates multiple traffic streams for
monitoring by a single tool
Control Solutions
xBalancer - LoadBalancing
xBalancer™ is the first monitoring load balancer
designed specifically for distributing network traffic
among inline monitoring appliances. This innovative
device solves oversubscribed IPSs, firewalls, Web
accelerators, and other inline appliances by enabling
two or more appliances to be deployed in parallel with
traffic balanced between them.
Features
• (24) SFP+ 10G ports in 1U: plug in
any tool any time – automatic media
and data rate conversion!
• Dynamic load balancing: distributes
traffic evenly to all appliances
• Flow-aware traffic distribution
• Supports both inline and out-of-band
tool sharing
• Powerful line rate features:
o L2 – L4 packet filtering
o MPLS label filtering
o Packet slicing
o Multicast load balancing
• Link-state awareness: checks the
state of device with Heartbeat packet
• Dual hot-swappable power supplies
http://www.netoptics.com/xBalancer
Load Balancing example
LB Group 2
LB Group 1
• Sharing 10G link to 1G tools
• Link can be tapped with a bypass switch for additional protection
Switch
IPS 1
Firewall Router
IPS 2 IPS 3 IPS 4 IPS 5 IPS 6
1G 1G 1G 1G 1G 1G
16 16
Director xStream
Features
• (24) SFP+ 10G ports in 1U: plug in
any tool any time – automatic media
and data rate conversion!
• 10G aggregation, regeneration,
matrix switching and filtering
• Powerful L2 – L4 smart filtering:
• IPv4 or IPv6 (src, dst)
• MAC (src, dst)
• MPLS label
• Protocol (any)
• Port or port group
• VLAN, etc.
• Packet slicing and port tagging
• Powerful statistics: packet count,
utilization, bandwidth, peaks, etc.
• Redundant hot-swappable power
supplies
Database
Monitoring
IDS
Firewall Switch Router
Switch Switch
Switch Switch
Switch
Switch
Traffic
Recorder
Sniffer
Protocol
Analyzer
VoIP
Analyzer
www.netoptics.com/Director-xStream
17 17
Director and Director PRO
http://www.netoptics.com/director
Features
• Modularity: 10 SFP ports, 4 XFP
ports and 2 modules--up to 38 ports
• 1G aggregation, regeneration,
matrix switching and filtering
• Powerful L2 – L4 smart filtering:
• IPv4 or IPv6 (src, dst)
• MAC (src, dst)
• MPLS label
• Protocol (any)
• Port or port group
• VLAN, etc.
• DPI Filtering: filter by payload or any
information up to Layer 7
• Dynamic load balancing (PRO ver.)
• Powerful statistics: packet count,
utilization, bandwidth, peaks, etc.
• Redundant hot-swappable PS
DNM
module
18 18
10G link aggregator: iLinkAgg xStream
Features
• (24) 10G SFP+ ports in 1U: plug
in any tool any time – automatic
media and data rate conversion!
• Managed 10G solution for
aggregation, regeneration, and
matrix switching
• Graphical “Drag & Draw”
interface
• Fully configurable port mapping
• Provides RMON statistics:
packet counts, bandwidth
utilization, and threshold alarms to
increase monitoring efficiency
• Redundant power supplies
1 Gbps 10 Gbps 10 Gbps 10 Gbps 10 Gbps Port
Aggregator
1 Gbps 1 Gbps Network
Tap
RMON1 RMON2 Forensic IDS Analyzer 1 Analyzer 2
http://www.netoptics.com/ilink-agg-xstream
19 19
Virtualization
Net Optics Phantom Solution for monitoring in a virtualized computing environment consists of four key components:
The Phantom™ Virtualization Tap provides visibility to all server traffic including inter-VM traffic.
The Phantom HD™ for network traffic filtering and pre-processing of packets captured in virtual environments. The
Director™ Data Monitoring Switch family is an optional component that can manage the Phantom HD
Physical monitoring tools are the final component of the Phantom Solution for performance, security, and compliance
monitoring in the virtualized environment.
Flagship Product Key Benefits
Visibility to all
server traffic
including inter-VM
traffic.
Phantom™ Virtualization Tap
• Preserves performance, capacity,
throughput and utilization for a true
cutting-edge technology solution
• Lowers investment in virtual tools by
bridging existing physical tools to the
virtual network
Network traffic
filtering and
pre-processing of
packets captured in
virtual
environments
Phantom HD™
• Enables routing of data from data
centers to central monitoring facilities
• Enables monitoring of virtual network
traffic in a virtualized computing
infrastructure that is unable to process
VN-Tags
Virtualization Solutions
Phantom Virtualization Tap
Features
• Taps each VM instance (by VM ID)
• Aggregates and replicates traffic
from multiple VM
• Smart filtering:
• IP source and destination
• MAC src and dst
• Protocol
• VLAN, port number, etc.
• Reduces the load of virtual switch
• Installs in hypervisor of kernel for full
traffic access and low CPU &
memory usage (2-4% average)
• vMotion support: follow VM’s as they
move across physical servers
• Network activity summary (packet
count, utilization, etc.): top protocols,
top talkers, sources, destinations and
connections.
VMware vSphere ESX/ESXi Server 4.X/5.X;
Microsoft Hyper-V 2012 8.X;
Citrix Xen Server 5.6.X;
Redhat KVM 2.6.32, Oracle VM 3.0
Parallels Cloud Server 6.0
Virtual & Physical convergence
ES
X
App
OS
VM1
Hypervisor
App
OS
VM2
App
OS
VM2
V Switch
Phantom™
Manager
KV
M
App
OS
VM1
Hypervisor
App
OS
VM2
App
OS
VM2
V Switch
Phantom™
Manager
XE
N
App
OS
VM1
Hypervisor
App
OS
VM2
App
OS
VM2
V Switch
Phantom™
Manager
Tunnel
IDS 01
Analyzer 01 Analyzer 02
IDS 02
Net Optics Director™
Net Optics Phantom™ HD
Physical Server
Physical Server
LAN/WAN
Manager
22 22
Monitoring From the moment you connect, Net Optics solutions give you unprecedented, continuous, 100 percent visibility of your
network traffic and applications. Now your IT engineers can drill down quickly from high-level metrics to granular details
using true application-specific insights and timely root-cause analysis to detect, diagnose and resolve network problems.
Real-time monitoring supports gigabit speeds.
Flagship Product Key Benefits
A single solution to
capture network
traffic, application
activity and VoIP
calls in 10/100
Mbps
Environments
appTap
• Plug-and-Play network monitoring
• Affordably monitor remote sites with
Internet broadband connections up to
100Mbps
A single solution to
capture network
traffic, application
activity and VoIP
calls in 1000 Mbps
Environments
Spyke
• Plug-and-Play network monitoring
• Affordably monitor remote sites with
Internet broadband connections up to
1000Mbps
Application Aware Monitoring Solutions
appTap
Features
• Automatic identification of common
applications using Deep Packet
Inspection
• Reveals network usage, latency and
bandwidth consumption
• VoIP SIP/RTP correlation and
individual VoIP call detail, jitter level,
and MOS score
• Continuous and ad-hoc packet
capture with filter support for
selective data capture
• Built-in reports on Top talkers,
Application Distribution,
Conversations, Network Volume,
Bandwidth Use, Latency, VoIP Use,
and many more
• Threshold based alerts
• Real-time and historical data view
appTap is the industry’s first integrated solution to
combine network tapping capabilities with network and
application monitoring. Now you can affordably monitor
remote sites without investing in costly on-site
engineers. appTap lets you analyze network traffic and
application activity—plus monitor VoIP calls, and
perform capacity planning and trend analysis.
Spyke
Spyke delivers powerful application intelligence for
smaller and medium-size businesses, uniting
Performance Management with Intelligent Access to
forge a total network monitoring and access
architecture. Spyke’s visibility enables quick problem
detection, isolation, diagnosis and resolution.
Features
• Automatic identification of common
applications using Deep Packet
Inspection
• Reveals network usage, latency and
bandwidth consumption
• VoIP SIP/RTP correlation and
individual VoIP call detail, jitter level,
and MOS score
• Continuous and ad-hoc packet
capture with filter support for
selective data capture
• Flow monitoring with flow bounce
diagrams
• Expandable storage capacity
• Generate and export NetFlow data
to multiple destinations, integrating
with third-party solutions
powered by
Thank You!
www.netoptics.com www.np-cannel.com
www.network-taps.eu
Network Performance Channel GmbH
Ohmstrasse 12
63225 Langen (Frankfurt/Main)
Germany
Email: netoptics@np-channel.com
Phone: +49 6103 906-722