Network Packet Broker | Network Monitoring Switch | Data Monitoring Switch


NEOXPacketLion – Innovative and Cost-Effective Network Packet Broker

Maximize network visibility with our cost-effective and innovative packet broker platform!

IT-Security-made-in-Germany_TeleTrusT-Seal
PacketLion - Neox Networks

Network Packet Brokers, also called Data (Network) Monitoring Switches, help you to intelligently manage your passively tapped network data and – through innovative technology – provide the analysis tools with the data packets reliably and in optimized form. Media type and speed of your network do not matter, as these devices are equipped with SFP+/SFP28/QSFP+/QSFP28/QSFP-DD connectors and process the data packets without affecting the active line and redistribute them according to your needs. By filtering out the data with hardware-based filtering mechanisms before routing it out, this allows you to evaluate multiple 10G lines with existing 1G analysis tools, for example, while reducing the amount of data for hassle-free and secure analysis. Data that is not of interest is either discarded or sent to other tools for further analysis.

packetlion flow

Intelligent flow detection makes it easier to monitor asymmetrical lines or redundant connections, since the monitoring switch always combines all the packets of a logical connection that belong together and makes them available to the corresponding analysis tool. This method also makes it possible to map a redundant monitoring landscape without any problems. You can add multiple analyzers to a monitoring group and distribute the traffic evenly. If a monitoring device in this group fails or is taken into maintenance, the traffic is redistributed to the remaining devices fully automatically without external intervention. A “heart-beat” packet helps to monitor the health of the connected monitoring devices.

packetlion Multi-Speed Transceiver

Our Packet Brokers support so-called multi-speed transceivers in the optical range. These special SFP+ modules can be used in the 1G as well as in the 10G range. This flexibility reduces capex costs, as you do not need new transceivers when migrating from 1G to 10G and can go directly to 10G operation without losing time. Management is done via an intuitive graphical user interface (GUI) and allows you to configure the monitoring switch within a very short time. The drag’n’drop function means you don’t need to be an expert to set the necessary traffic routing rules. You define input and output ports and set the filter definition – the configuration is done! The data can be filtered on layer 2-4 level before being forwarded to the analysis tools. The setting options are very diverse, for example, you can select according to the following criteria:

  • Layer 2: Source MAC address, Destination MAC address, Ethernet Type, VLAN, MPLS, VXLAN etc.
  • Layer 3: Source IP address, destination IP address, IP address ranges and subnets, IPv4 and IPv6, fragments, etc.
  • Layer 4: TCP or UDP source and destination ports etc.
  • Layer 2-7: UDB (User Defined Byte) – Offset Filtering (Up to 6 Offset’s can be defined, 128Byte to Layer 2-4)

Filtering & Tagging

The filters of the Packet Broker control the traffic flow. Filters can: Deny traffic, pass all traffic, transfer traffic according to certain criteria and mark packages. The VLAN filters of the
Packet Brokers can mark packets,
remove tags from packages and cut packages.

Load balancing

Session-dependent load balancing

Load Balancing2

Aggregation

  • Any-to-Any Configuration
  • Easy monitoring of EtherChannel (connected links)
  • Aggregate network traffic to single or multiple tools

Regeneration

Regeneration
  • Deliver data to all monitoring tools
  • Double your data ports with passive fiber TAPs in 1G / 10G / 40G / 100G

UDB can also be used to look for specific content in packets. If tunneling protocols are used or other methods are used to encapsulate data, UDB can be used to set up dedicated filter criteria for native content within the frame. Since the original IP address is no longer visible in the tunneling process due to the encapsulation, UDB still helps you to filter according to it. The monitoring switch PacketLion from NEOX NETWORKS supports functions like regeneration 1:N, aggregation N:1 and of course N:N.

  • Regeneration 1:N – In this method, data packets are duplicated on any x ports, thus the content of a line can be made available to several analyzers.
  • Aggregation N:1 – Aggregation helps you monitor the data from multiple network segments with only a single network interface.
  • Load balancing: For example, data from a 40G line can be redistributed to several 10G lines without loss of flow/session information. A combination with filter criteria is also allowed and makes sense, with which you can additionally load balance only a certain application (http), for example.
  • Filtering: The high-performance hardware allows you to use a pre-selection of the data to only forward a certain part of the total traffic for analysis. This method reduces the load on the analyzer enormously, as only the part that is of interest for monitoring is forwarded, e.g. the database traffic. This technique greatly increases the performance of the monitoring tool, which in turn contributes to the reliability of the analysis.

Of course, combinations of all the above functions are possible. All available ports can be used as input ports as well as output ports.

The Network Packet Brokers of the PacketLion series from NEOX NETWORKS are each equipped with redundant replaceable AC/DC power supplies. These devices are available with different numbers of ports and different speeds. Choices include 48x 1G/10G SFP+ and 6x 40G QSFP+ ports in the NX-PBPL-1S model, 48x 1G/10G SFP+ and 6x 40G/100G QSFP28 ports in the NX-PBPL-1M model, 48x 10G/25G SFP28 and 8x 40G/100G QSFP28 ports in model NX-PBPL-1L, 32x 40G/100G QSFP28 ports in model NX-PBPL-2M or NX-PBPL-2L, or 32x 40G/100G/400G QSFP-DD ports in model NX-PBPL-3XL. There are also options to run the ports at other speeds via fan out cables. More details can be found in the corresponding data sheets.

The configuration of the monitoring switch is done via an intuitive graphical user interface, which allows you to set up and operate the device within a very short time and without much prior knowledge. Using drag’n’drop, you can easily select the ports and link the policies/filters accordingly.

The cooling or internal exhaust air is from the front to the back, which ensures optimal cooling in data centers. In addition to the front-mounted management port, there is also a console port for serial access. Regardless of the number of ports, some of the devices support packet slicing and MPLS & VLAN stripping and all devices support VLAN tagging, port locking, ingress and egress filtering, syslog, SNMP, RADIUS & TACACS, user definable filters (offset filtering) and dynamic load balancing. Another feature is the support of dual-speed transceivers, which allows you to use 1G and 10G data lines with only one module.

400G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-3XL

400G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-3XL

The PacketLion NX-PBPL-3XL is a purpose-built network packet broker designed for data center and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a standalone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant QSFP-DD pluggables / transceivers. Flexible port speeds (port splitting) can be scaled according to network requirements (10G / 25G / 50G / 100G) and can be changed within the interface.

  • 32x 40G/100G/400G QSFP-DD ports
  • 128x 10G/25G/50G/100G possible via fan out cable on QSFP-DD ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G, 100G and 400G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Faulty network packets (FCS/CRC) are forwarded
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • Packet slicing

100G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-2L

100G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-2L

The PacketLion NX-PBPL-2L is a purpose-built network packet broker designed for data center and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a standalone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

  • 32x 40G/100G QSFP28 ports
  • 64x 50G or 128x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Faulty network packets (FCS/CRC) are forwarded
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • MPLS Stripping
  • Packet slicing

100G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-2M

100G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-2M

The PacketLion NX-PBPL-2M is a purpose-built network packet broker designed for data center and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

  • 32x 40G/100G QSFP28 ports
  • 64x 50G or 128x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Faulty network packets (FCS/CRC) are forwarded
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies

25G Ethernet Network 48 Port Packet Broker System PacketLion NX-PBPL-1L

25G Ethernet Network 48 Port Packet Broker System PacketLion NX-PBPL-1L

The PacketLion NX-PBPL-1L is a purpose-built network packet broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant SFP28 or QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) for the 8 additional QSFP28 ports can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

  • 48x 10G/25G SFP28 ports and 8x 40G/100G QSFP28 ports
  • 16x 50G or 32x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Faulty network packets (FCS/CRC) are forwarded
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • MPLS Stripping
  • Packet slicing

10G Ethernet Network 48 Port Packet Broker System PacketLion NX-PBPL-1M

10G Ethernet Network 48 Port Packet Broker System PacketLion NX-PBPL-1M

The PacketLion NX-PBPL-1M is a purpose-built network packet broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant SFP+ or QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) for the 6 additional QSFP28 ports can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

  • 48x 1G/10G SFP+ ports and 6x 40G/100G QSFP28 ports
  • 12x 50G or 24x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Faulty network packets (FCS/CRC) are forwarded
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • MPLS Stripping

10G Ethernet Network 48 Port Packet Broker System PacketLion NX-PBPL-1S

10G Ethernet Network 48 Port Packet Broker System PacketLion NX-PBPL-1S

The PacketLion NX-PBPL-1S is a purpose-built network packet broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant SFP+ or QSFP+ pluggables / transceivers. Flexible port speeds (port splitting) for the 6 additional QSFP+ ports can be scaled according to network requirements (10G) and can be changed within the interface.

  • 48x 1G/10G SFP+ ports and 6x 40G QSFP+ ports
  • 24x 10G possible via fan out cable on QSFP+ ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G and 40G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Faulty network packets (FCS/CRC) are forwarded
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
Online Shop Neox Networks

NEOXPacketLion Datasheet

Datasheet_PacketLion_EN

NEOXPacketLion NX-PBPL-3XL Datasheet

We will be happy to consult you and look forward to hearing from you!