Last updated: August 9, 2024

PacketFalcon Compact - 100G Highly Flexible Packet Capture & Network Forensics Appliance

Professional Network Forensics Appliance and Cybersecurity Tool

Ultra-Fast Recording and Analysis of Network Data in Real Time!

For optimal and secure IT service delivery, IT security teams must have permanent access to detailed traffic analysis. Network forensics provides this essential access and insight that security analysts need.

Our PacketFalcon products are powerful recorders for all types of network speeds, enabling IT organisations to analyse, monitor and accurately record traffic without compromise.

PacketFalcon provides permanent 24 x 7 access to 1G, 10G, 25G, 40G and 100G networks for detailed analysis, including forensic analysis of past events. PacketFalcon supports security teams by accurately and losslessly recording network traffic at key nodes using Network TAPs, indexing and analysing it in real time, enabling rapid investigation of anything happening on the network.

By indexing the data and providing simple and complex hardware and software filters (Berkeley Packet Filter), PacketFalcon enables security teams to quickly investigate and thus stop attacks – even when they occur in state-of-the-art high-speed networks such as 40G or 100G network topologies.

On the hardware side, the PacketFalcon impresses with its robust design, a choice of 31 TB or 61 TB disk storage, 256GB or 512GB RAM, up to two high-performance gigabit capture cards from Napatech.

Linux and special network forensics software are used. This makes it possible to analyse network traffic across locations via remote access and to quickly find errors.

Due to its high flexibility in terms of mobile and stationary application possibilities, and also due to its optionally available transport case, it is the ideal companion for every network analysis and forensics specialist.

Highlights

  • Up to 100Gbps lossless capture/recording
  • Up to 2 high-speed FPGA capture cards
  • Acceleration of Mean-Time-To-Resolution (MTTR) through visualisation and interaction with meta data, communication flows and the packets themselves
  • Extensive insight into the functioning of networks and applications including detection/classification of applications (DPI)
  • Analysis of network traffic in each remote segment, support for 1/10/25/40/100 Gigabit Ethernet
  • Voice and Video over IP quality metrics (MOS Score), including overview statistics and comprehensive analysis of signalling and RTP media streams
  • Packet-based analysis of communication relationships visualised in intuitive graphical displays
  • Integrated, reliable expert events, indication of anomalies via OSI layer 2-7
  • Patented drill-down function
  • Hardware/FPGA based Deduplication
  • Hardware/FPGA based timestamps with nanosecond accuracy
  • Hardware/FPGA based Packet Slicing und Capture Filter
  • Recording terabytes of traffic without data packet loss
  • 8GB/12GB hardware buffer for absorbing and analysing microbursts
  • PTP support for external time synchronisation according to IEEE 1588v2
  • Optional support for hardware-encrypted capture memory, protects your data from unauthorised access. FIPS 140-2 certification and compliance with ISO/IEC 27040 and NIST 800-88 standards.
  • Cascading of multiple Packet Falcon systems possible
  • Redundant power supplies
  • Simultaneous unlimited access via Web GUI
  • VoIP/Video analysis
  • Performance monitoring
  • PCAP or PCAPNG Support
  • Optional: hard case for transport
  • Development and quality assurance in Germany

Use Cases

  • Accurate, robust and portable network forensics and analysis tool directly available at the customer site
  • Capture traffic from enterprise applications at distributed or remote locations to gain detailed and accurate insight into network status
  • Quick troubleshooting and resolution of network and application problems
  • Provide easy-to-use tools for field engineers and customers to capture local network traffic
  • Speed up troubleshooting of VoIP issues with software features such as Expert Analysis
  • Get an accurate picture of the impact of IT rollouts on your network through comprehensive reporting and monitoring at every stage of deployment
  • Detect in real time the impact of network problems on application performance and delivery
  • Enables both real-time examination of data and historical playback for forensic analysis
  • Improve the speed of implementation of your new initiative to recoup costs and achieve a faster ROI
  • By using a Network TAP to mirror traffic, PacketFalcon monitors packet data without affecting the performance of the production network

Network Forensics Use Case Diagram - with Network Packet Broker, Network TAPs and Network Monitoring Equipment
NEOXPacketFalcon Example Scenario

Up to 100G
Lossless Recording
up to 100Gbps
High-End Napatech FPGA NIC
High-End FPGA
Capture Cards
Icon - Network Media
For 1G - 100G
Networks
Storage Capacity
Storage Capacity
up to 61 TB
IEEE 1588v2 Precision Time Protocol (PTP)
IEEE 1588v2
Precision Time Protocol
Portable and Rackmountable
Portable &
Rackmountable
Packet Slicing & Filtering
FPGA based
Packet Slicing
& Capture Filter
Hardware based Nanosecond Timestamping
FPGA based
Nanosecond
Timestamping
Deduplication
FPGA based
Deduplication
PCAP & PCAPNG Support
PCAP & PCAPNG
Support
Cascading of several PacketFalcons possible
Cascading
possible
Optional Transport Case available
Optional
Transport Case
Made in Germany
Developed & QA
in Germany
Retention Time Calculator
Kontaktieren Sie uns
Unser Online-Shop

DOWNLOADS

PDF-Download - 100G PacketFalcon Compact_1G - 100G-Packet-Capture-Appliance
Datasheet PacketFalcon Compact

Hardware Overview

  • Leightweight compact 1U chassis
  • Server class CPU
  • 2x redundant 800W 80 PLUS Platinum Certified power supply units
  • 2x 10G Ethernet Management Interface
  • Up to two High-speed FPGA capture cards for 1G/10G/25G/40G/100G
  • 4x SFP/SFP+/SFP28 ports or 2x QSFP+/QSFP28 ports
  • Intelligent Platform Management Interface (IPMI) RJ45 LAN port

  • 2x USB3.2 Gen 1 ports, D-Sub VGA display connector
  • IEEE 1588-2008 (PTPv2)
  • Operating system on a separate SSD M2
  • Storage capacity between 31 TB and 61 TB
  • Up to 512 GB DDR4 RAM
  • Dimensions (W x H x D): 43.7 x 4.3 x 42.9 cm, approx. 12 kg
  • Optional: Hard case with CNC-milled foam for transport

Napatech NT100A01-SCC SmartNIC
NT100A01-SCC
with 4x SFP/SFP+/SFP28 ports

Accelerator-webpage-products-logo-200g-compact
NT200A02-SCC
with 2x QSFP+/QSFP28 ports

  • Napatech (capture cards)
    The NEOXPacketFalcon Compact can be equipped with one or two of the following network measurement and capture boards:

    • 1G/10G/25G (High Performance) FPGA Adapter (SFP/SFP+/SFP28)
    • 40G/100G (High Performance) FPGA Adapter (QSFP+/QSFP28)

You can find out more about Napatech’s capture cards here.

Preinstalled Software

  • Lossless capture and recording up to 100Gbps in 1G, 10G, 25G, 40G and 100G network links/communications while ensuring full data integrity.
  • Powerful data preparation tools that allow NetOps to focus on specific time periods and types of traffic.
  • Built-in analytics, including expert analysis and critical network metrics, such as top talkers and top logs, all of which help to accelerate the investigation of any anomaly.
  • Network pasckets get hardware timestamped in FPGA with nanosecond accuracy. GPS, PPS, PTP and other external time sources are supported.

Technical Specifications

Width x Height x Depth Weight Power Supply Unit Input Voltage
43.7 cm x 4.3 cm x 42.9 cm c.a. 12 kg 2x 800W – 80 PLUS Platinum certified 110-240 VAC 50-60Hz

PacketFalcon Compact Models

PacketFalcon Compact - 1G-100G Packet Capture Appliances
ITEM NO. RAM SSD CAPTURE CARD – PORTS
NX-LC-25G-30TB-CT* 256 GB 30.7 TB 4x 1G/10G/25G SFP28
NX-LC-25G-60TB-CT* 256 GB 61.2 TB 4x 1G/10G/25G SFP28
NX-LC-40G-30TB-CT* 256 GB 30.7 TB 2x 40G QSFP+ / 8x 10G (Fan-out)
NX-LC-40G-60TB-CT* 256 GB 61.2 TB 2x 40G QSFP+ / 8x 10G (Fan-out)
NX-LC-100G-30TB-CT* 256 GB 30.7 TB 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out)
NX-LC-100G-60TB-CT* 256 GB 61.2 TB 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out)
ITEM NO. RAM SSD CAPTURE CARD 1 – PORTS CAPTURE CARD 2 – PORTS
NX-LC-25G25G-30TB-CT* 256 GB 30,7 TB 4x 1G/10G/25G SFP28 4x 1G/10G/25G SFP28
NX-LC-25G25G-60TB-CT* 256 GB 61,2 TB 4x 1G/10G/25G SFP28 4x 1G/10G/25G SFP28
NX-LC-25G40G-30TB-CT* 256 GB 30,7 TB 4x 1G/10G/25G SFP28 2x 40G QSFP+ / 8x 10G (Fan-out)
NX-LC-25G40G-60TB-CT* 256 GB 61,2 TB 4x 1G/10G/25G SFP28 2x 40G QSFP+ / 8x 10G (Fan-out)
NX-LC-40G40G-30TB-CT* 256 GB 30,7 TB 2x 40G QSFP+ / 8x 10G (Fan-out) 2x 40G QSFP+ / 8x 10G (Fan-out)
NX-LC-40G40G-60TB-CT* 256 GB 61,2 TB 2x 40G QSFP+ / 8x 10G (Fan-out) 2x 40G QSFP+ / 8x 10G (Fan-out)
NX-LC-25G100G-30TB-CT* 256 GB 30,7 TB 2x 40G QSFP+ / 8x 10G (Fan-out) 2x 100G QSFP28 / 2x 40G QSFP+ /
2x 25G (Adapter) / 8x 10G (Fan-out)
NX-LC-25G100G-60TB-CT* 256 GB 61,2 TB 2x 40G QSFP+ / 8x 10G (Fan-out) 2x 100G QSFP28 / 2x 40G QSFP+ /
2x 25G (Adapter) / 8x 10G (Fan-out)
NX-LC-100G100G-30TB-CT* 256 GB 30,7 TB 2x 100G QSFP28 / 2x 40G QSFP+ /
2x 25G (Adapter) / 8x 10G (Fan-out)
2x 100G QSFP28 / 2x 40G QSFP+ /
2x 25G (Adapter) / 8x 10G (Fan-out)
NX-LC-100G100G-60TB-CT* 256 GB 61,2 TB 2x 100G QSFP28 / 2x 40G QSFP+ /
2x 25G (Adapter) / 8x 10G (Fan-out)
2x 100G QSFP28 / 2x 40G QSFP+ /
2x 25G (Adapter) / 8x 10G (Fan-out)

* With „-3Y“ for 3 year – or „-5Y“ for 5 year software subscription and hardware support

PacketFalcon Compact UPGRADES

ITEM NO. DESCRIPTION
NX-LC-UPG-512B-C Upgrade des PacketFalcon-Systems from 256 GB to 512 GB RAM
NX-LC-UPG-HSK-C Hard case for transport

PacketFalcon Compact Hard Case for Transport
Hard case for transport

Customers who viewed this product were also interested in the following products:

NEOXPacketFalcon Portable

PORTABLE/MOBILE
Packet Capture Appliance

PacketFalcon Porable - 100G Packet Capture Appliance

NEOXPacketFalcon Mini X

PORTABLE & ULTRA COMPACT
Packet Capture Appliance

PacketFalcon Mini X - 1G/10G/25G Packet Capture Appliance

NEOXPacketGrizzly

MODULAR & SCALABLE
Packet Capture Solution

PacketGrizzly- Modular & Scalable-Network Forensics Appliance

We will be happy to consult you and look forward to hearing from you!