PacketTiger - Next Generation Network Packet Broker with Advanced Features

NEOXPacketTiger
NEOXPacketTiger NX-PBPT-1XL Network Packet Broker - 8x 100G
PacketTiger NX-PBPT-1XL
8x 100G Ethernet QSFP28 Ports via 4 NMC Slots

NEOXPacketTiger Network Packet Broker NX-PBPT-2XL bzw. NX-PBPT-2XXL
PacketTiger NX-PBPT-2XL/XXL
2x/4x 100G Ethernet QSFP28 Ports
NEOXPacketTiger NX-PBPT-1L - Network Packet Broker
PacketTiger NX-PBPT-1L-*
16x Ethernet SFP+ Ports or 4x QSFP28
via 4 NMC Slots
PacketTiger - NX-PBPT-1SCR - Network Packet Broker
PacketTiger NX-PBPT-1SCR
5x 10M/100M/1000M Ethernet RJ45 Ports
and 4x 1G/10G SFP+
and 2x 1G SFP or RJ45 Ports
NEOX PacketTiger - NX-PBPT-1M - Network Packet Broker
PacketTiger NX-PBPT-1M
6x 10M/100M/1000M Ethernet RJ45 Ports
and 2x 1G/10G SFP+ Ports
PacketTiger - NX-PBPT-1SC - Network Packet Broker
PacketTiger NX-PBPT-1SC
6x 10M/100M/1000M Ethernet RJ45 Ports
and 2x 1G SFP or 2x 1G RJ45 Ports
For companies with the need for higher port density e.g. 32x 400G
we also offer Network Packet Brokers from our PacketLion Product Family

What do I need an Advanced NPB for?

Network Packet Brokers (Data/Network Monitoring Switches) are used to provide the network analysis tools with the network data packets (e.g. via Network TAP) reliably and in optimised form.

New network protocols and tunnel methods lead to changes in the format and length of the packet structure. To gain real insight into network traffic, the payload of the packets must also be analysed. Such changes push the parsing capabilities of switch-based NPBs to their limits and reveal a growing need for more sophisticated methods to process the network data.

NEOXPacketTiger Advanced Network Packet Brokers (ANPBs) allow full flexibility in parsing headers and processing payloads, and provide advanced technology for modifying and optimising these packets. Advanced features such as IPv6 filtering in GTP Tunneling, Regex and DPI or application-based metadata extraction using CPU-based NPBs are available.

NEOXPacketTiger ANPBs use modern, high-performance, modular and scalable COTS hardware that can be configured for the desired processing capacity.
This unique approach removes hardware performance constraints and enables better scaling and matching between hardware and performance requirements. Media type and speed of your network do not matter as our PacketTigers are equipped with RJ45/SFP/SFP+/QSFP+/QSFP28 ports depending on the configuration.

PacketTiger - Advanced Network Packet Broker - Features
NEOXPacketTiger Network Packet Broker with Advanced Features

The Advanced Packet Processing of the PacketTiger allows you to work even more granularly and look deeper into the individual packets of the data load than you are used to with regular Network Packet Brokers. Even resource-intensive scenarios such as removing duplicates in the network or masking or blacking out content in the individual packets are no problem for PacketTiger!

All in all, an Advanced Network Packet Broker has significantly more functionalities to optimally distribute network data than a conventional NPB. NEOXPacketTiger ANPBs are available in different categories: Desktop Appliances, Network Appliances and Servers, enabling a wide range of solutions, from stand-alone solutions with lower data capacity for small businesses and small remote sites to multi-Gbps processing clusters for service providers.

Network Packet Broker Functionalities - with NEOXPacketTiger
Possible deployment scenarios for NextGen Network Packet Broker

Getting the Most out of Dynamic Load Balancing

Dynamic Load Balancing

Of course, a NextGen Packet Broker also offers you the option of distributing the incoming data load via an automated, load-based mechanism. Here, several analysis and monitoring systems are combined in a virtual port group and defined as a logical target.

Due to its x86-based architecture, a PacketTiger in its NextGen Packet Broker form is also able to provide intelligence-based detection of flows and allow both asymmetric and redundant connections to be monitored much more easily and holistically by the connected systems, as the PacketTiger’s flow detection allows packets to be reassembled at any time and always output to the correct analysis tool.

If a member of this “load balancing” group fails for any reason, the NextGen Packet Broker detects this and automatically distributes the data to the remaining members of that group.

A combination of a heartbeat packet and percentage load detection, combined with intelligent flow and data volume detection, helps NextGen Packet Broker to detect and exclude failed systems from the distribution, as well as load-based distribution in addition to flow-based distribution.

All these features and mechanisms can be combined to get the most out of your analysis and monitoring infrastructure. (see Use monitoring resources more effectively thanks to intelligent Load Balancing)

Dynamic Load Balancing on 4 Network Forensics Appliances
Use Case 1:
Dynamic Load Balancing to 4 Network Forensics Appliances

Dynamic load balancing on 3 network forensics appliances - after failure of the 4th network forensics appliance
Use Case 2:
Dynamic Load Balancing to 3 Network Forensics Appliances
after failure of the 4th Network Forensics Appliance

FILTER CHANGE MADE EASY

Filtering & Tagging

Of course, when using a NextGen Packet Broker, you do not have to do without any of the features and conveniences that you already have with a regular Network Packet Broker, or also called a Legacy Packet Broker. This of course includes the filtering options mentioned above.

But what does that mean in detail?

The filters of the NextGen Packet Broker control the traffic flow and can: Deny traffic, pass all traffic, pass traffic according to certain criteria and mark packets.

Using a NextGen Packet Broker you are able to filter the data on OSI level 2 to 4 before passing it to the analysis tool to reduce the load on that very analysis tool. The setting options are manifold, e.g.:

  • Layer 2: Source MAC address, Destination MAC address, Ethernet Type, VLAN, MPLS, VXLAN etc.
  • Layer 3: Source IP address, Destination IP address, IP address ranges and subnets, IPv4 and IPv6, fragments etc.
  • Layer 4: TCP or UDP source and destination ports etc.
  • Layer 2-7: UDF (User Defined Filter) – Offset Filtering (Up to 6 Offset’s can be defined, 128Byte to Layer 2-4)

The above list is congruent with the filtering options of our PacketLion series, but in addition a NextGen Packet Broker offers many more options to capture the individual layers of a packet and use them as filter criteria, among others:

  • Layer 2: Source MAC Address, Destination MAC Address, Ethernet Type, VLAN, MPLS, VXLAN etc.
  • Layer 2: PPPoE Protocol Number, Provider Backbone Bridge SID, Full VXLAN Tunnel Support etc.
  • Layer 3: L3-TTL, Encapsulated IPv6 in L3-MPLS
  • Layer 4: TCP Window Size, TCP Flags etc

Of course, a NextGen Packet Broker also offers the possibility to create extended filter rules using UDF and thus to filter for content even above Layer 4. UDF stands for “User Defined Filtering” and allows the user to search for specific values or Ethernet fields in each packet by pattern matching.

And if even the UDF is not enough, you can always fall back on the DPI engine, which is also available, and thus penetrate into the last corners of the OSI layer model.

In addition, you also have the option of marking incoming data traffic with corresponding VLAN tags, filtering it according to these tags and finally removing them again.

An example of this is, for example, the tapping of data by means of several Network TAPs on the same connection.
VLAN tagging is often used here in order to be able to separate data coming from the Network TAPs or other measuring points more easily from one another again by means of the VLAN tag on the analysis system.

Packet-Filtering with a Network Packet Broker
Packet Filtering with a Network Packet Broker

DATA PROTECTION AND NETWORK PROTECTION GO HAND IN HAND
THANKS TO PACKET SLICING

Packet Slicing

As with a Network Packet Broker, it is also possible with a NextGen Packet Broker to shorten or slice the individual packets. Often, the gap between the capacity of the recording analysis system on the one hand and the amount of incoming data on the other is so large that, without appropriate additional mechanisms, the analysis system is most likely not able to record all individual packets without loss.

And this is exactly where the Packet Slicing feature comes into play: with this method it is possible to reduce the incoming data load on your analysis system by up to 87% (at 1518 bytes packet size and Packet Slicing at 192 bytes) by simply removing the payload data from each packet.

However, while regular PacketLion Packet Brokers perfectly handle above mentioned slicing technique, NextGen Packet Brokers of PacketTiger series deliver even deeper result.

In addition to the basic approach, a PacketTiger additionally allows you to “attach” the slicing window to an OSI layer or directly to the payload. This allows you to always apply the slicing at the same position, regardless of the structure of the packets, and thus not lose any important information.

And it can also be beneficial for GDPR compliance to remove user-related data from Ethernet packets. By means of Packet Slicing, this is also possible without any problems.

You can also find more information about this in our blog article “Stay at the cutting edge thanks to Packet Slicing“.

Packet Slicing mit PacketTiger Network Packet Broker
Packet Slicing with a Network Packet Broker

AGGREGATION AND REGENERATION MODES

In addition, the Network Packet Brokers from our PacketLion series naturally also offer you the familiar operating modes:
Aggregation

  • Aggregation N:1 – By means of aggregation, the data of several measuring points are combined and passed on to one or more analysis systems. The port labelling function is particularly useful here, as it allows you to identify the physical source of the network traffic at your analysis tool after the aggregation, despite the correlation.
    • Any-to-Any Configuration
    • Easy monitoring of EtherChannel (connected links)
    • Aggregate network traffic to single or multiple tools

Regeneration

  • Regeneration 1:N – With this method, data packets are duplicated on x ports, thus the data of a measuring point can be made available to several analysers.
    • Deliver data to all monitoring tools
    • Duplicate your data ports with passive Fiber TAPs in 1G / 10G / 40G / 100G

Of course, these modes can not only be combined with each other, but also with the above features such as load balancing and filtering. Even a combination of all features is possible and always and exclusively takes place at full line rate, without bottlenecks and without speed limitations.

Network Packet Broker Aggregation Mode
Network Packet Broker Aggregation Mode

Network Packet Broker Regeneration Mode
Network Packet Broker Regeneration Mode

HIGH FLEXIBILITY THROUGH NMC/SFP CONNECTIVITY

Multimode SFP+ Transceiver

Our NextGen Packet Brokers from the PacketTiger product range also offer maximum flexibility and scalability when it comes to connectivity.

Not only that our NextGen Packet Brokers, depending on the model, can be equipped with different NMC modules, each of which can cover the most diverse topologies by means of SFP or SFP+ transceivers.

Pure RJ45-based NMC modules are also available and allow you to connect regular copper-based signals to the PacketTiger.

Of course, as a NextGen platform, the PacketTiger also offers the possibility to control and process corresponding 100G signals via QSFP+.

Furthermore, the port splitting function helps you to use one interface multiple times, which allows you to significantly increase the number of usable ports without additional costs.

EASY TO USE AND SIMPLE TO CONFIGURE

NEOXPacketLion GUI Screenshot - Port Configuration

The complete setup and configuration of the devices is done either via an intuitive (drag’n drop) and easy to use graphical interface (GUI via HTTPS) or a command line based interface (Serial or SSH).

Both management options put user-friendliness and ease of use at the top of the list and allow you to set up NextGen Packet Broker within a very short time.

Both the drag’n’drop feature of the GUI and the automatic character completion on the CLI allow the user to create complicated and interlocking rule sets, even as a novice.

In addition, both Network Packet Broker and NextGen Packet Broker from NEOX NETWORKS offer an API interface called NETCONF, which allows you to manage multiple systems at the same time and automate filtering rules and other tasks.

For management and monitoring purposes, common network tools such as Syslog and SNMPv2/3 are also available, allowing you to easily administer NextGen Packet Brokers.

RADIUS and TACACS for central user management are also supported.

TIMESTAMPING LIKE THE PROS

Timestamping Function available

Some of our Network Packet Broker models also support nanosecond hardware timestamping.

This function can not only be very helpful to measure latencies in the network but is also used in critical scenarios such as the so-called high-frequency trading on the stock exchanges.

Here, once again, not only the latency plays an important role but also the usability of a record of a trade, since by means of nanosecond-accurate timestamp it can of course also be determined who initiated which trade at what time.

Advanced Top Features

Advanced Features of NEOXPacketTiger Network Packet Brokers

Packet CapturePacket Capturing – Use the PacketTiger to record the data to be processed directly on the system in PCAP format. From short ad-hoc measurements to permanent recording in the ring buffer, everything is possible with the PacketTiger!

Packet ReplayPacket Replay – You want to know if your monitoring tool is working properly? You are unsure whether all evaluations are correct. With the PCAP Replay function you can check your setup directly and at any time.

Advanced Packet Filtering Advanced Filtering – Allows you to set any information in the entire Ethernet packet as a filter condition, whether in the header or payload. Define single or a whole set of bits as filter criteria to create incredibly granular filters. All this at full speed, of course!

GTP-IMSIGTP-Tunnel-Handling – Correlating GTP-U and GTP-C/RADIUS is a common task for ISPs. In combination with IMSI filtering, you benefit from dynamic load balancing within a GTP tunnel based on the internal IP, ensuring that your tool is always aware of everything that is happening on the network.

DeduplicationDe-Duplication – Depending on the setup, it can happen that data is tapped twice, either due to misconfigured SPAN/Mirror ports or simply due to the placed measurement points (Network TAPs), identify and discard these duplicate packets and reduce the load on your analysis system.

Data MaskingData Masking – Depending on where it is used, more or less sensitive data may need to be processed. To ensure that sensitive data does not fall into the wrong hands, you can hide or black out sensitive data by overwriting certain areas of a packet, regardless of where that area is located.

TunnelingTunnelunterstützung – The PacketTiger allows the removal, termination and filtering of the most common tunnel protocols. Be it GRE, ERSPAN or VXLAN, regardless of the source, you can use our PacketTiger as an endpoint of the same.

DPI - Deep Packet Inspection Deep Packet Inspection (optional) – You don’t want to be blind beyond the 4th OSI layer? Look beyond your network directly into your applications and use our integrated DPI engine and filter directly on the application layer!

Netflow SupportNetflow Support (optional) – In many cases, it is not even necessary to analyze the complete and original packet. Our PacketTiger allows you to generate IPFIX based on the raw data and thus get highly accurate values about the individual connections and their metrics.

Contact Us
Unser Online-Shop

DOWNLOADS:

NEOXPacketTiger Family
Datasheet

PacketTiger Network Packet Broker Datasheet PDF Download english

Our PacketTiger Models


Network Packet Broker with
8x 100G QSFP28 Ports (via 4 NMC Slots)

8x 100G Ports
NEOXPacketTiger NX-PBPT-1XL Network Packet Broker - 8x 100G
QSFP28 Port(s)
QSFP+ Port(s)

The PacketTiger NX-PBPT-1XL is a PCI Gen4 based Advanced Network Packet Broker and offers 2 QSFP28 ports each distributed over 4 NMC slots; thus a total of 8 QSFP28 ports.

Different configurations are possible due to the NMC module flexibility. Please contact our sales department about this.

The system can be used to optimise port utilisation of existing infrastructure or as a stand-alone device in L2-L7 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface via NETCONF.

There are no additional licence fees per port!

  • Packet Capturing – use PacketTiger to record the data to be processed in PCAP format directly on the system
  • Packet Replay – use the PCAP Replay function to check your setup directly and at any time
  • Advanced Filtering – allows you to set any information in the entire Ethernet packet as a filter condition, whether in the header or payload
  • GTP Correlation – correlate GTP traffic with IMSI filtering and benefit from dynamic load balancing within a GTP tunnel based on the internal IP
  • De-Duplication – identify and discard duplicate packets to reduce the load on your analysis system
  • Data masking – hide or black out sensitive data by overwriting specific areas of a packet, no matter where that area is
  • Tunnel support – PacketTiger allows you to remove, terminate and filter all common tunnel protocols
  • Tunnel Filtering – filter within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Deep Packet Inspection* – More visibility through DPI – increase network visibility through application discovery
  • Netflow Support* – extend your monitoring performance using the high granularity of IPFIX

* Optionally available

  • 4×2 QSP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS, GTP, L2TP, VxLAN, Regular Expressions)
  • Support of up to 1,000,000 filter rules, AND & OR logical operation
  • Aggregation and regeneration of all network traffic
  • User Defined Filtering – support for User Defined Filtering (UDF) rules
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Clustering of multiple Network Packet Broker systems possible (coming soon), HA configuration support
  • Support for Layer 2 and Layer 3 GRE tunnelling protocol
  • Load Balancing based on 3-tuple, 4-tuple and 5-tuple criteria, IP addresses
  • Port labelling allows after aggregation at your analysis tool to identify the physical source of network traffic despite correlation
  • Header stripping: MPLS, PPPoE, VN-Tag, VxLAN, GRE, L2TP, CTP-U, GENEVE
  • Static and Dynamic Packet Slicing
  • Nanosecond accurate hardware timestamping
  • AAA servers: Radius and TACACS+
  • Metadata export using Kafka
  • Logging through Syslog and SNMP Traps
  • Hardware Acceleration via DPDK
  • VLAN Editing, MAC Replace
  • Fault diagnosis Digital Diagnostics Monitoring (DDM) (available soon)

Item No.PortsNMC SlotsDimensions (WxHxD)/WeightRack MountingCERTIFICATIONS
NX-PBPT-1XL PCIe Gen48x 100G QSFP28*443.8 cm x 4.4 cm x 61.0 cm / 18.0 kgYesCE, RoHS, FCC Class A, UL

* Backwards compatible with QSFP+


Network Packet Broker with
2x/4x 100G QSFP28 Ports

2x 100G Ports
4x 100G Ports
NEOXPacketTiger Network Packet Broker NX-PBPT-2XL bzw. NX-PBPT-2XXL
QSFP28 Port(s)
QSFP+ Port(s)

The PacketTiger NX-PBPT-2XL and NX-PBPT-2XXL are PCI Gen4-based Advanced Network Packet Brokers, offering 2 and 4 QSFP28 ports respectively.

The system can be used to optimise port usage of existing infrastructure, or as a standalone device in L2-L7 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using NETCONF.

  • Packet Capturing – use PacketTiger to record the data to be processed in PCAP format directly on the system
  • Packet Replay – use the PCAP Replay function to check your setup directly and at any time
  • Advanced Filtering – allows you to set any information in the entire Ethernet packet as a filter condition, whether in the header or payload
  • GTP Correlation – correlate GTP traffic with IMSI filtering and benefit from dynamic load balancing within a GTP tunnel based on the internal IP
  • De-Duplication – identify and discard duplicate packets to reduce the load on your analysis system
  • Data masking – hide or black out sensitive data by overwriting specific areas of a packet, no matter where that area is
  • Tunnel support – PacketTiger allows you to remove, terminate and filter all common tunnel protocols
  • Tunnel Filtering – filter within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Deep Packet Inspection* – More visibility through DPI – increase network visibility through application discovery
  • Netflow Support* – extend your monitoring performance using the high granularity of IPFIX

* Optionally available

  • 2x (NX-PBPT-2XL) or 4x (NX-PBPT-2XXL) QSP28 ports
  • Flexible port allocation (1:1, N:N, N:1, 1:N)
  • Aggregation of 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS, GTP, L2TP, VxLAN, Regular Expressions)
  • Support of up to 1,000,000 filter rules, AND & OR logical operation
  • Aggregation and regeneration of all network traffic
  • User Defined Filtering – support for User Defined Filtering (UDF) rules
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Clustering of multiple Network Packet Broker systems possible (coming soon), HA configuration support
  • Support for Layer 2 and Layer 3 GRE tunnelling protocol
  • Load Balancing based on 3-tuple, 4-tuple and 5-tuple criteria, IP addresses
  • Port labelling allows after aggregation at your analysis tool to identify the physical source of network traffic despite correlation
  • Header stripping: MPLS, PPPoE, VN-Tag, VxLAN, GRE, L2TP, CTP-U, GENEVE
  • Static and Dynamic Packet Slicing
  • Nanosecond accurate hardware timestamping.
  • AAA servers: Radius and TACACS+
  • Metadata export using Kafka
  • Logging through Syslog and SNMP Traps
  • Hardware Acceleration via DPDK
  • VLAN Editing, MAC Replace
  • Fault diagnosis Digital Diagnostics Monitoring (DDM) (available soon)

Item No.PortsDimensions (WxHxD)/WeightRack MountingCERTIFICATIONS
NX-PBPT-2XL PCIe Gen42x 100G QSFP28*44.5 cm x 8.7 cm x 73.0 cm / ca. 25 kgYesCE, RoHS, FCC Class A
NX-PBPT-2XXL PCIe Gen44x 100G QSFP28*44.5 cm x 8.7 cm x 73.0 cm / ca. 25 kgYesCE, RoHS, FCC Class A

* Backwards compatible with QSFP+


Network Packet Broker with
4x NMC Slots with up to 32 Additional Ports
and up to 16 included 1G/10G SFP+ Ports

1G-Port(s)
10G Port(s)
40G Port(s)
100G Port(s)
NEOXPacketTiger NX-PBPT-1L - Network Packet Broker with 4 NMC-Slots and up to 32 additional Ports
RJ45 Port(s)
SFP+ Port(s)
QSFP28 Port(s)
QSFP+ Port(s)

The PacketTiger NX-PBPT-1L-20/40/100 is an Advanced Network Packet Broker and offers either 16x 1G/10G SFP+ or 4x 100G QSFP28 distributed via 4 NMC slots.

Different configurations are possible due to NMC module flexibility. Please contact our sales area.

The system can be used to optimise port usage of existing infrastructure, or as a standalone device in L2-L7 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using NETCONF.

There are no additional licence fees per port!

  • Packet Capturing – use PacketTiger to record the data to be processed in PCAP format directly on the system
  • Packet Replay – use the PCAP Replay function to check your setup directly and at any time
  • Advanced Filtering – allows you to set any information in the entire Ethernet packet as a filter condition, whether in the header or payload
  • GTP Correlation – correlate GTP traffic with IMSI filtering and benefit from dynamic load balancing within a GTP tunnel based on the internal IP
  • De-Duplication – identify and discard duplicate packets to reduce the load on your analysis system
  • Data masking – hide or black out sensitive data by overwriting specific areas of a packet, no matter where that area is
  • Tunnel support – PacketTiger allows you to remove, terminate and filter all common tunnel protocols
  • Tunnel Filtering – filter within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Deep Packet Inspection* – More visibility through DPI – increase network visibility through application discovery
  • Netflow Support* – extend your monitoring performance using the high granularity of IPFIX

* Optionally available

  • Basic version with 4 NMC card slots and up to 16x 1G/10G SFP+ or 4x 100G QSFP28
  • NMC modules available for up to 40G (see table below)
  • Flexible port allocation (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M, 1G, 10G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS, GTP, L2TP, VxLAN, Regular Expressions)
  • Support of up to 1,000,000 filter rules, AND & OR logical operation
  • Aggregation and regeneration of all network traffic
  • User Defined Filtering – support for User Defined Filtering (UDF) rules
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Clustering of multiple Network Packet Broker systems possible (coming soon), HA configuration support
  • Support for Layer 2 and Layer 3 GRE tunnelling protocol
  • Load Balancing based on 3-tuple, 4-tuple and 5-tuple criteria, IP addresses
  • Port labelling allows after aggregation at your analysis tool to identify the physical source of network traffic despite correlation
  • Header stripping: MPLS, PPPoE, VN-Tag, VxLAN, GRE, L2TP, CTP-U, GENEVE
  • Static and Dynamic Packet Slicing
  • Nanosecond accurate hardware timestamping.
  • AAA servers: Radius and TACACS+
  • Metadata export using Kafka
  • Logging through Syslog and SNMP Traps
  • Hardware Acceleration via DPDK
  • VLAN Editing, MAC Replace
  • Fault diagnosis Digital Diagnostics Monitoring (DDM) (available soon)

Item No.SFP+ PortsQSP28 Ports*

NMC SlotsMax. THroughputDimensions (W*H*D) / WeightCertifications
NX-PBPT-1L-2016x 1G/10G**420 Gb/s43.8 cm x 4.4 cm x 61.0 cm
ca. 18 kg
CE, RoHS,
FCC Class A, UL
NX-PBPT-1L-4016x 1G/10G**40 Gb/s
NX-PBPT-1L-1004x 100G100 Gb/s

* Backwards compatible with QSFP+
** Included, occupy 2 of the 4 NMC slots – but can be exchanged

Optionally available
NMC Modules
Item No.Ports
NX-PBPT-1L-8PC8x 1G RJ45
NX-PBPT-1L-8PS+8x 1G/10G SFP+
NX-PBPT-1L-2PQ+2x 40G QSFP+

NEOXPacketTiger - NX-PBPT-1L - Network Packet Broker - NMC-Module x3
NMC modules for NEOXPacketTiger NX-PBPT-1L-20/40/100


Network Packet Broker with
5x 10M/100M/1000M Ethernet RJ45 Port
+ 4x 1G/10G Ethernet SFP+ Ports
+ 2x 1G Ethernet SFP or RJ45 Ports

10M-100M-1000M Port(s)

1G-Port(s)
10G Port(s)
PacketTiger - NX-PBPT-1SCR - Network Packet Broker
RJ45 Port(s)
SFP Port(s)
SFP+ Port(s)

The PacketTiger NX-PBPT-1SCR is an Advanced Network Packet Broker and provides 5x 10M/100M/1000M RJ45, 4x 1G/10G SFP+ and 2x 1G SFP or RJ45 ports.

The system can be used to optimise port usage of existing infrastructure, or as a standalone device in L2-L7 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using NETCONF.

  • Packet Capturing – use PacketTiger to record the data to be processed in PCAP format directly on the system
  • Packet Replay – use the PCAP Replay function to check your setup directly and at any time
  • Advanced Filtering – allows you to set any information in the entire Ethernet packet as a filter condition, whether in the header or payload
  • GTP Correlation – correlate GTP traffic with IMSI filtering and benefit from dynamic load balancing within a GTP tunnel based on the internal IP
  • De-Duplication – identify and discard duplicate packets to reduce the load on your analysis system
  • Data masking – hide or black out sensitive data by overwriting specific areas of a packet, no matter where that area is
  • Tunnel support – PacketTiger allows you to remove, terminate and filter all common tunnel protocols
  • Tunnel Filtering – filter within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Deep Packet Inspection* – More visibility through DPI – increase network visibility through application discovery
  • Netflow Support* – extend your monitoring performance using the high granularity of IPFIX

* Optionally available

  • 5x 10M/100M/1000M RJ45 ports + 4x 1G/10G SFP+ ports + choice of 2x 1G SFP or 2x 1G RJ45 ports
  • Flexible port allocation (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M and 1G/10G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS, GTP, L2TP, VxLAN, Regular Expressions)
  • Support of up to 1,000,000 filter rules, AND & OR logical operation
  • Aggregation and regeneration of all network traffic
  • User Defined Filtering – support for User Defined Filtering (UDF) rules
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Clustering of multiple Network Packet Broker systems possible (coming soon), HA configuration support
  • Support for Layer 2 and Layer 3 GRE tunnelling protocol
  • Load Balancing based on 3-tuple, 4-tuple and 5-tuple criteria, IP addresses
  • Port labelling allows after aggregation at your analysis tool to identify the physical source of network traffic despite correlation
  • Header stripping: MPLS, PPPoE, VN-Tag, VxLAN, GRE, L2TP, CTP-U, GENEVE
  • Static and Dynamic Packet Slicing
  • Nanosecond accurate hardware timestamping.
  • AAA servers: Radius and TACACS+
  • Metadata export using Kafka
  • Logging through Syslog and SNMP Traps
  • Hardware Acceleration via DPDK
  • VLAN Editing, MAC Replace
  • Fault diagnosis Digital Diagnostics Monitoring (DDM) (available soon)

Item No.PortsDimensions (WxHxD)/WeightRack MountingCertifications
NX-PBPT-1SCR5x 10M/100M/1000M RJ45
2x 1G SFP/RJ45*
4x 1G/10G SFP+
35.0 cm x 4.4 cm x 26.0 cm / 5.0 kgYesCE, RoHS, FCC Class A, EC Class A

* Combo ports: Either 2x 1G SFP or 2x 1G RJ45

Network Packet Broker with
6x 10M/100M/1000M RJ45 &
2x 1G/10G SFP+ Ethernet Ports

10M-100M-1000M Port(s)
1G-Port(s)
10G Port(s)
NEOX PacketTiger - NX-PBPT-1M - Network Packet Broker
RJ45 Port(s)
SFP+ Port(s)

The PacketTiger NX-PBPT-1M is an Advanced Network Packet Broker and provides 6x 10M/100M/1000M RJ45 and 2x 1G/10G SFP+ ports.

The system can be used to optimise port usage of existing infrastructure, or as a standalone device in L2-L7 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using NETCONF.

  • Packet Capturing – use PacketTiger to record the data to be processed in PCAP format directly on the system
  • Packet Replay – use the PCAP Replay function to check your setup directly and at any time
  • Advanced Filtering – allows you to set any information in the entire Ethernet packet as a filter condition, whether in the header or payload
  • GTP Correlation – correlate GTP traffic with IMSI filtering and benefit from dynamic load balancing within a GTP tunnel based on the internal IP
  • De-Duplication – identify and discard duplicate packets to reduce the load on your analysis system
  • Data masking – hide or black out sensitive data by overwriting specific areas of a packet, no matter where that area is
  • Tunnel support – PacketTiger allows you to remove, terminate and filter all common tunnel protocols
  • Tunnel Filtering – filter within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Deep Packet Inspection* – More visibility through DPI – increase network visibility through application discovery
  • Netflow Support* – extend your monitoring performance using the high granularity of IPFIX

* Optionally available

  • 6x 10M/100M/1000M RJ45 ports and 2x 1G/10G SFP+ ports (PacketTiger NX-PBPT-1M)
  • Flexible port allocation (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M, 1G and 10G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS, GTP, L2TP, VxLAN, Regular Expressions)
  • Support of up to 1,000,000 filter rules, AND & OR logical operation
  • Aggregation and regeneration of all network traffic
  • User Defined Filtering – support for User Defined Filtering (UDF) rules
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Clustering of multiple Network Packet Broker systems possible (coming soon), HA configuration support
  • Support for Layer 2 and Layer 3 GRE tunnelling protocol
  • Load Balancing based on 3-tuple, 4-tuple and 5-tuple criteria, IP addresses
  • Port labelling allows after aggregation at your analysis tool to identify the physical source of network traffic despite correlation
  • Header stripping: MPLS, PPPoE, VN-Tag, VxLAN, GRE, L2TP, CTP-U, GENEVE
  • Static and Dynamic Packet Slicing
  • Nanosecond accurate hardware timestamping.
  • AAA servers: Radius and TACACS+
  • Metadata export using Kafka
  • Logging through Syslog and SNMP Traps
  • Hardware Acceleration via DPDK
  • VLAN Editing, MAC Replace
  • Fault diagnosis Digital Diagnostics Monitoring (DDM) (available soon)

Item No.PortsDimensions (WxHxD)/WeightRack MountingCertifications
NX-PBPT-1M6x 10M/100M/1000M RJ45
2x 1G/10G SFP+
25.4 cm x 4.3 cm x 22.6 cm / 1.6 kgOptional Rack Mounting KitCE, RoHS


Network Packet Broker with
6x 10M/100M/1000M Ethernet RJ45 Ports
+ 2x 1G Ethernet SFP or RJ45 Ports

10M-100M-1000M Port(s)
1G-Port(s)
PacketTiger - NX-PBPT-1SC - Network Packet Broker

RJ45 Port(s)
SFP Port(s)

The PacketTiger NX-PBPT-1SC is an Advanced Network Packet Broker and provides 6x 10M/100M/1000M RJ45 and 2x 1G SFP or RJ45 ports.

The system can be used to optimise port usage of existing infrastructure, or as a standalone device in L2-L7 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using NETCONF.

  • Packet Capturing – use PacketTiger to record the data to be processed in PCAP format directly on the system
  • Packet Replay – use the PCAP Replay function to check your setup directly and at any time
  • Advanced Filtering – allows you to set any information in the entire Ethernet packet as a filter condition, whether in the header or payload
  • GTP Correlation – correlate GTP traffic with IMSI filtering and benefit from dynamic load balancing within a GTP tunnel based on the internal IP
  • De-Duplication – identify and discard duplicate packets to reduce the load on your analysis system
  • Data masking – hide or black out sensitive data by overwriting specific areas of a packet, no matter where that area is
  • Tunnel support – PacketTiger allows you to remove, terminate and filter all common tunnel protocols
  • Tunnel Filtering – filter within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Deep Packet Inspection* – More visibility through DPI – increase network visibility through application discovery
  • Netflow Support* – extend your monitoring performance using the high granularity of IPFIX

* Optionally available

  • 6x 10M/100M/1000M RJ45 ports – and a choice of 2x 1G SFP or 2x 1G RJ45 ports
  • Flexible port allocation (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M and 1G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS, GTP, L2TP, VxLAN, Regular Expressions)
  • Support of up to 1,000,000 filter rules, AND & OR logical operation
  • Aggregation and regeneration of all network traffic
  • User Defined Filtering – support for User Defined Filtering (UDF) rules
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Clustering of multiple Network Packet Broker systems possible (coming soon), HA configuration support
  • Support for Layer 2 and Layer 3 GRE tunnelling protocol
  • Load Balancing based on 3-tuple, 4-tuple and 5-tuple criteria, IP addresses
  • Port labelling allows after aggregation at your analysis tool to identify the physical source of network traffic despite correlation
  • Header stripping: MPLS, PPPoE, VN-Tag, VxLAN, GRE, L2TP, CTP-U, GENEVE
  • Static and Dynamic Packet Slicing
  • Nanosecond accurate hardware timestamping.
  • AAA servers: Radius and TACACS+
  • Metadata export using Kafka
  • Logging through Syslog and SNMP Traps
  • Hardware Acceleration via DPDK
  • VLAN Editing, MAC Replace
  • Fault diagnosis Digital Diagnostics Monitoring (DDM) (available soon)

Item No.PortsDimensions (WxHxD)/WeightRack MountingCertifications
NX-PBPT-1SC6x 10M/100M/1000M RJ45
2x 1G SFP/RJ45*
22.2 cm x 4.4 cm x 24.1 cm / 5 kgOptional Rack Mounting KitCE, RoHS, FCC Class A, EC Class A

* Combo ports: Either 2x 1G SFP or 2x 1G RJ45

Customers who viewed this product were also interested in the following products:

PacketLion

HIGH PERFORMANCE
Network Packet Brokers

NEOXPacketLion Family - High Performance Network Packet Broker with High Port Density

PacketTigerVirtual

VIRTUAL
Network Packet Broker

PacketTigerVirtual - Virtual-Network Packet Broker

PacketWolf

ADVANCED
Packet Processing Appliance

PacketWolf - Paket Processing Appliance

We will be happy to consult you and look forward to hearing from you!