NEOXPacketTiger – Innovative and cost-efficient Network Packet Broker

Maximize network visibility with our cost-effective and innovative Packet Broker family!

NEOXPacketTiger
IT-Security - Made in Germany
NEOXPacketTiger - NX-PBPT-1L - Network Packet Broker

Network Packet Brokers, also called Data (Network) Monitoring Switches, help you to intelligently manage your passively tapped network data and – through innovative technology – provide the analysis tools with the data packets reliably and in optimized form.
Media type and speed of your network do not matter as these devices are equipped with RJ45, SFP, SFP+, QSFP+, QSFP28 connectors and handle the data packets without affecting the active line and redistribute them according to your needs.
For example, by filtering out the data with hardware-based filtering mechanisms before it is routed out, you can evaluate multiple 10G lines with existing 1G analysis tools while reducing the amount of data for hassle-free and secure analysis. Data that is not of interest is either discarded or sent to other tools for further analysis.

Network Packet Broker diagram

Intelligent flow detection makes it easier to monitor asymmetric lines or even redundant connections, as the monitoring switch always merges all the related packets of a logical connection and provides them to the corresponding analysis tool. This method also makes it possible to map a redundant monitoring landscape without any problems.
You can add multiple analyzers to a monitoring group and distribute traffic evenly. If a monitoring device of this group fails or is taken into maintenance, the traffic is redistributed to the remaining devices fully automatically without external intervention.

packetlion Multi-Speed Transceiver

Our Packet Brokers support so-called multi-speed transceivers for optical data transmission. These special SFP/SFP+ modules can be used in both the 1G and 10G ranges. This flexibility reduces capex costs because you don’t need new transceivers when migrating from 1G to 10G and can go straight to 10G operation without losing time.
Management is done via an intuitive graphical user interface (GUI) and allows you to configure the monitoring switch within a very short time. Thanks to the drag’n’drop function, you don’t need to be an expert to set the necessary traffic routing rules. You determine the input and output ports and set the filter definition – the configuration is ready!
The data, before being passed on to the analysis tools, can be filtered at layer 2-4 level. The setting options are very diverse, for example, you can select the following criteria:

  • Layer 2: Source MAC Address, Destination MAC Address, Ethernet Type, VLAN, MPLS, VXLAN etc.
  • Layer 3: Source IP address, destination IP address, IP address ranges and subnets, IPv4 and IPv6, fragments, etc.
  • Layer 4: TCP or UDP source and destination ports etc.
  • Layer 2-7: UDF (User Defined Filtering) – Offset Filtering

Filtering & Tagging

The Packet Broker filters control the flow of traffic. Filters can: Deny traffic, Pass all traffic, Pass traffic by specific criteria and Mark packets. Packet Broker’s VLAN filters can tag packets, remove tags from packets, and truncate packets.

Load Balancing

Session-dependent load balancing

Load Balancing2

Aggregation

  • Any-to-Any Configuration
  • Easy monitoring of EtherChannel (connected links)
  • Aggregate network traffic to single or multiple tools

Regeneration

Regeneration
  • Deliver data to all monitoring tools
  • Double your data ports with passive fiber TAPs in 1G / 10G / 40G / 100G

Furthermore, UDF can be used to look for special contents of packages. If tunneling protocols are in use or other methods are used to encapsulate data, UDF can be used to set up dedicated filter criteria according to native content within the frame. Since the original IP address is no longer visible in the tunneling process due to encapsulation, UDF still helps you to filter for it. The monitoring switch PacketLion from NEOX NETWORKS supports functions such as regeneration 1:N, aggregation N:1 and of course N:N.

  • Regeneration 1:N – In this method, data packets are duplicated on any x ports, thus the content of a line can be made available to several analyzers.
  • Aggregation N:1 – Aggregation helps you monitor the data from multiple network segments with only a single network interface.
  • Load balancing: For example, data from a 40G line can be redistributed to multiple 10G lines without loss of flow/session information. A combination with filter criteria is also allowed and makes sense, with which you can additionally, for example, load-balance only a certain application (http).
  • Filtering: The high-performance hardware allows you to use a pre-selection of the data to extract only a certain part of the total traffic for analysis. This method reduces the load on the analyzer enormously, since only the part that is of interest for monitoring is forwarded, e.g. the database traffic. This technique greatly increases the performance of the monitoring tool, which in turn contributes to the reliability of the analysis.

Of course, combinations of all the above functions are possible. All available ports can be used as input and output ports.

10M/100M/1000M 4 Port + 1G/10G 2 Port
Ethernet Network Packet Broker
with 4 NMC slots and up to 32 additional ports

NEOXPacketTiger - NX-PBPT-1L - Network Packet Broker
NEOXPacketTiger - NX-PBPT-1L + 2 QSFP28 - Network Packet Broker

The PacketTiger NX-PBPT-1L is a purpose-built Network Packet Broker designed for data center and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using Netconf.

There are no additional per-port license fees, and the device is compatible with commercially available pluggables/transceivers. Flexible port speeds (port splitting) can be scaled according to network requirements (10G / 40G / 100G) and changed within the interface.

  • Basic version with 4x 10M/100M/1000M RJ45 ports, 2x 1G/10G SFP+ ports – and 4 NMC module slots
  • NMC modules available for up to 100G (see table below)
  • 32x 10G possible via fan out cable on (optional) QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M, 1G, 10G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Support for up to 1,000,000 filter rules
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunnelling protocol
  • Load balancing based on 5-tuple criteria
  • Port Labeling
  • MPLS Stripping
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through Syslog und SNMP Traps
  • Digital Diagnostics Monitoring (DDM)
  • GTP Correlation + GTP inner IP Load-balancing + IMSI Filtering
  • Stripping of MPLS, PPPoE, VN-Tag, VX-LAN, GTP-U, GRE, L2TP
  • Deep Packet Inspection (DPI, license required)
  • Data Masking + Data Slicing (packet slicing)
  • IPFIX – Netflow Export (license required)
  • Deduplication
  • Packet Capture
  • Timestamping
  • VLAN Editing
  • MAC Replace
NEOXPacketTiger - NMC-Module

Optionally available NMC modules
Article No.Ports
NX-PBPT-1L-2P1002x 100G QSFP28
NX-PBPT-1L-8P18x 1G RJ45
NX-PBPT-1L-2P402x 40G QSFP+
NX-PBPT-1L-4P104x 10G SFP+

10M/100M/1G/10G Ethernet 8 Port
Network Packet Broker

NEOX PacketTiger - NX-PBPT-1M - Network Packet Broker
The PacketTiger NX-PBPT-1M and NX-PBPT-1MT are purpose-built Network Packet Brokers designed for data center and network perimeter use. The systems can be used to optimize port utilization of existing infrastructure, or as stand-alone devices in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using Netconf.

  • 6x 10M/100M/1000M RJ45 ports and 2x 1G/10G SFP+ ports (PacketTiger NX-PBPT-1M)
  • 4x 10M/100M/1000M RJ45 ports and 2x 1G/10G RJ45 ports and 2x 1G/10G SFP+ ports (PacketTiger NX-PBPT-1MT)
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M, 1G and 10G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Support for up to 1,000,000 filter rules
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunnelling protocol
  • Load balancing based on 5-tuple criteria
  • Port Labeling
  • MPLS Stripping
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through Syslog und SNMP Traps
  • Digital Diagnostics Monitoring (DDM)
  • GTP Correlation + GTP inner IP Load-balancing + IMSI Filtering
  • Stripping of MPLS, PPPoE, VN-Tag, VX-LAN, GTP-U, GRE, L2TP
  • Deep Packet Inspection (DPI, license required)
  • Data Masking + Data Slicing (packet slicing)
  • IPFIX – Netflow Export (license required)
  • Deduplication
  • Packet Capture
  • Timestamping
  • VLAN Editing
  • MAC Replace

10M/100M/1000M Ethernet 4 Port
+ 1G Ethernet 2 Port
Network Packet Broker

PacketTiger - NX-PBPT-1SCR - Network Packet Broker

The PacketTiger NX-PBPT-1SCR is a purpose-built Network Packet Broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using Netconf.

  • 4x 10M/100M/1000M RJ45 ports – and optional 2x 1G SFP or 2x 1G RJ45 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M and 1G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Support for up to 1,000,000 filter rules
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunnelling protocol
  • Load balancing based on 5-tuple criteria
  • Port Labeling
  • MPLS Stripping
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through Syslog und SNMP Traps
  • Digital Diagnostics Monitoring (DDM)
  • GTP Correlation + GTP inner IP Load-balancing + IMSI Filtering
  • Stripping of MPLS, PPPoE, VN-Tag, VX-LAN, GTP-U, GRE, L2TP
  • Deep Packet Inspection (DPI, license required)
  • Data Masking + Data Slicing (packet slicing)
  • IPFIX – Netflow Export (license required)
  • Deduplication
  • Packet Capture
  • Timestamping
  • VLAN Editing
  • MAC Replace

10M/100M/1000M Ethernet 6 Port
+ 1G Ethernet 2 Port
Network Packet Broker

PacketTiger - NX-PBPT-1SC - Network Packet Broker

 

The PacketTiger NX-PBPT-1SC is a purpose-built Network Packet Broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketTigers offer a full API interface using Netconf.

  • 6x 10M/100M/1000M RJ45 ports – and optional 2x 1G SFP or 2x 1G RJ45 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 10M/100M/1000M and 1G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP Flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Support for up to 1,000,000 filter rules
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunnelling protocol
  • Load balancing based on 5-tuple criteria
  • Port Labeling
  • MPLS Stripping
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through Syslog und SNMP Traps
  • Digital Diagnostics Monitoring (DDM)
  • GTP Correlation + GTP inner IP Load-balancing + IMSI Filtering
  • Stripping of MPLS, PPPoE, VN-Tag, VX-LAN, GTP-U, GRE, L2TP
  • Deep Packet Inspection (DPI, license required)
  • Data Masking + Data Slicing (packet slicing)
  • IPFIX – Netflow Export (license required)
  • Deduplication
  • Packet Capture
  • Timestamping
  • VLAN Editing
  • MAC Replace
Contact Us
Unser Online-Shop

DOWNLOADS:

NEOXPacketTiger Datasheet

Datasheet - PacketTiger - Download

We will be happy to consult you and look forward to hearing from you!