NEOXPacketLion – Innovative & Cost-Effective Network Packet Brokers for up to 400G

Maximize network visibility with our cost-effective and innovative packet broker platform!

IT-Security - Made in Germany

Why do I need a Network Packet Broker?

With a Network Packet Broker, also known as a Data/Network Monitoring Switch or Matrix Switch, you are able to provide your analysis and monitoring systems with all data streams of the measuring points distributed in the network reliably and in aggregated form.

The Network Packet Broker acts as a link between the access point in your network and, for example, your security tool. Depending on the version, it supports all common transceiver standards, from 1 Gigabit SFP slots to the widespread 10 Gigabit SFP+ interfaces to the high-performance QSFP-DD connections, which allow bandwidths of up to 400 Gigabit per interface.

Using dedicated ASIC hardware, which is used in every Network Packet Broker, both simple and complicated filter rules can be created to ensure an optimised data flow towards the analysis systems.

Network Packet Broker Environment Diagram - with Network TAPs, Liveaction Omnipeek, Extrahop, ZEEK, Wireshark
Network Packet Broker Deployment Examples

Here you can filter out unwanted data packets or even entire data streams that are not required for the evaluation and thus reduce the overall load. This enables you to filter incoming data volumes from measuring points, which may be distributed over several 10G, 100G or even 400G lines, almost latency-free in real time.

This allows you to continue to make optimal use of your existing 1G or 10G monitoring infrastructure and directly discard data that is not of interest without creating additional load on your monitoring systems.

packetlion Multi-Speed Transceiver

GETTING THE MOST OUT OF LOAD BALANCING

Apart from the regular filtering options of a network packet broker, they also offer an automated, load-based distribution of data, the so-called “load balancing”. Here, several analysis and monitoring systems are combined in a virtual port group and defined as a logical target.

Intelligent flow detection makes it much easier to monitor asymmetrical networks or even redundant connections in a holistic manner, as the Network Packet Broker will always reunite packets through flow detection and always output them to the correct analysis tool.

If a participant in this “load balancing” group should fail for any reason, the Network Packet Broker detects this and automatically distributes the data to the remaining participants in this group.

An interaction of a heartbeat packet as well as the detection of the percentage load, combined with an intelligent detection of the flows and data volume helps the Network Packet Broker to detect failed systems and to exclude them from the distribution as well as a load-based distribution in addition to the flow-based distribution.

All these functions and mechanisms can be combined to get the most out of your analysis and monitoring infrastructure. (see Using Monitoring Resources More Effectively Thanks to Intelligent Load Balancing).

Load Balancing

Load Balancing2
Session-Dependent
Load Balancing

HIGH FLEXIBILITY THROUGH SFP CONNECTIVITY

When it comes to connectivity, you also get maximum flexibility and scalability with our Network Packet Brokers from the PacketLion product range.

Not only do our Network Packet Brokers support dual-rate or multi-speed transceivers, which allow both 1G and 10G connections to be negotiated via the same SFP+ transceiver. Depending on the model, it is possible to connect up to 32x 400G connections.

Using special breakout cables, even up to 128x 10G connections can be combined in a single, 1U high Network Packet Broker, depending on the model.

Furthermore, the port splitting function helps you to use an interface several times, which allows you to significantly increase the number of usable ports without additional costs.

EASY TO OPERATE AND SIMPLE TO CONFIGURE

The complete setup and configuration of the devices is done either via an intuitive (drag’n drop) and easy-to-use graphical interface (GUI via HTTPS) or a command line based interface (serial or SSH).

Both management options put user-friendliness and ease of use at the top of the list and allow you to set up the Network Packet Broker within a very short time. Both the drag’n’drop function of the GUI and the automatic character completion on the CLI allow the user to create complicated and interlocking rule sets, even as a novice.

In addition, NEOX NETWORKS’ Network Packet Brokers offer an API interface called NETCONF, which allows you to administer multiple systems simultaneously and to automate filtering rules and other tasks.

For the purpose of administration and monitoring, common network tools such as Syslog and SNMPv2/3 are also available, with which the Network Packet Brokers can be easily administered. RADIUS and TACACS for central user administration are also supported.

FILTER CHANGE MADE EASY

The corresponding filter options were already mentioned at the beginning, but what does that mean in detail? By means of a Network Packet Broker you are able to filter the data on OSI level 2 to 4 before they are passed on to the analysis tool in order to reduce the load on the analysis tool. The setting options are manifold, for example you can:

  • Layer 2: Source MAC address, Destination MAC address, Ethernet Type, VLAN, MPLS, VXLAN etc.
  • Layer 3: Source IP address, Destination IP address, IP address ranges and subnets, IPv4 and IPv6, fragments etc.
  • Layer 4: TCP or UDP source and destination ports etc.
  • Layer 2-7: UDF (User Defined Filter) – Offset Filtering (Up to 6 Offset’s can be defined, 128Byte to Layer 2-4)

Should you nevertheless find yourself in a situation where the information you are looking for cannot be accessed with regular filters, the network packet brokers often offer so-called UDF filtering in addition to the above-mentioned regular filtering options between OSI layer 2 and 4.
UDF stands for “User Defined Filter” and allows the user to search for specific values or Ethernet fields in each individual packet by pattern matching.

Filtering & Tagging

The filters of the Packet Broker control the traffic flow.

Filters can: Deny traffic, Pass all traffic, Pass traffic according to certain criteria and Mark packets.

The Packet Broker’s VLAN filters can tag packets, remove tags from packets and truncate packets.

DATA PROTECTION AND NETWORK PROTECTION GO HAND IN HAND

For compliance with the GDPR, it can be advantageous to remove user-related data from the Ethernet packets. This can be easily implemented using the packet slicing function.

You can also find more information on this in our blog article Stay a the cutting edge thanks to Packet Slicing.

OPERATING MODES AND COMBINATION OPTIONS

In addition, the Network Packet Brokers from our PacketLion series naturally also offer you the familiar operating modes:

  • Regeneration 1:N – With this method, data packets are multiplied on x ports, so that the data of a measuring point can be made available to several analysers.
  • Aggregation N:1 – By means of aggregation, the data of several measuring points are combined and forwarded to one or more analysis systems. The port labelling function is particularly useful here, as it allows you to identify the physical source of the network traffic after aggregation at your analysis tool, despite correlation.

Of course, these modes can not only be combined with each other, but also with the above features such as load balancing and filtering. Even a combination of all features is possible and is always and exclusively carried out at full line rate, without bottlenecks and without limitations in speed.

Aggregation

  • Any-to-Any Configuration
  • Easy monitoring of EtherChannel
    (connected links)

Regeneration

Regeneration
  • Deliver data to all monitoring tools
  • Double your data ports with passive fibre/fibre TAPs in
    1G / 10G / 40G / 100G

TIME STAMPING LIKE THE PROS

Some of our Network Packet Broker models also support nanosecond hardware time stamping. This feature can be very helpful to measure latencies in the network.

Our PacketLion Models


400G Ethernet Network 32 Port
Packet Broker System PacketLion NX-PBPL-3XL

400G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-3XL

The PacketLion NX-PBPL-3XL is a purpose-built network packet broker designed for data center and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a standalone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant QSFP-DD pluggables / transceivers. Flexible port speeds (port splitting) can be scaled according to network requirements (10G / 25G / 40G / 50G / 100G / 200G) and changed within the interface.

TECHNICAL SPECIFICATIONS
  • 32x 40G/100G/200G/400G QSFP-DD ports
  • 64x 40G/200G possible via fan out cable on QSFP-DD ports
  • 128x 10G/25G/50G/100G possible via fan out cable on QSFP-DD ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G, 50G, 100G, 200G, and 400G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Timestamping
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • Packet slicing


Download Datasheet


100G Ethernet Network 32 Port
Packet Broker System PacketLion NX-PBPL-2L

100G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-2L

The PacketLion NX-PBPL-2L is a purpose-built network packet broker designed for data center and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a standalone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

TECHNICAL SPECIFICATIONS
  • 32x 40G/100G QSFP28 ports
  • 64x 50G or 128x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Timestamping
  • Support for Jumbo Frames
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • MPLS Stripping
  • Packet slicing


Download Datasheet


100G Ethernet Network 32 Port
Packet Broker System PacketLion NX-PBPL-2M

100G Ethernet Network 32 Port Packet Broker System PacketLion NX-PBPL-2M

The PacketLion NX-PBPL-2M is a purpose-built network packet broker designed for data center and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

TECHNICAL SPECIFICATIONS
  • 32x 40G/100G QSFP28 ports
  • 64x 50G or 128x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies


Download Datasheet


25G Ethernet Network 48 Port
Packet Broker System PacketLion NX-PBPL-1L

25G Ethernet Network 48 Port Packet Broker System PacketLion NX-PBPL-1L

The PacketLion NX-PBPL-1L is a purpose-built network packet broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant SFP28 or QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) for the 8 additional QSFP28 ports can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

TECHNICAL SPECIFICATIONS
  • 48x 1G/10G/25G SFP28 ports and 8x 40G/100G QSFP28 ports
  • 16x 50G or 32x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Timestamping
  • Support for Jumbo Frames
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • MPLS Stripping
  • Packet slicing


Download Datasheet


10G Ethernet Network 48 Port
Packet Broker System PacketLion NX-PBPL-1M

NEOX Networks PacketLion - Network Packet Broker

The PacketLion NX-PBPL-1M is a purpose-built network packet broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant SFP+ or QSFP28 pluggables / transceivers. Flexible port speeds (port splitting) for the 6 additional QSFP28 ports can be scaled according to network requirements (10G / 25G / 50G) and can be changed within the interface.

TECHNICAL SPECIFICATIONS
  • 48x 1G/10G SFP+ ports and 6x 40G/100G QSFP28 ports
  • 12x 50G or 24x 10G/25G possible via fan out cable on QSFP28 ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G, 40G and 100G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP28 interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies
  • MPLS Stripping
  • Packet Slicing


Download Datasheet


10G Ethernet Network 48 Port
Packet Broker System PacketLion NX-PBPL-1S

NEOX Networks PacketLion - Network Packet Broker

The PacketLion NX-PBPL-1S is a purpose-built network packet broker designed for use in top-of-rack applications and network perimeter use. The system can be used to optimize port utilization of existing infrastructure, or as a stand-alone device in L2-L4 filtering applications. To ensure seamless integration into your monitoring infrastructure, all PacketLions offer a full API interface using Netconf.

There are no additional license fees per port and the device is compatible with MSA compliant SFP+ or QSFP+ pluggables / transceivers. Flexible port speeds (port splitting) for the 6 additional QSFP+ ports can be scaled according to network requirements (10G) and can be changed within the interface.

TECHNICAL SPECIFICATIONS
  • 48x 1G/10G SFP+ ports and 6x 40G QSFP+ ports
  • 24x 10G possible via fan out cable on QSFP+ ports
  • Flexible port mapping (1:1, N:N, N:1, 1:N)
  • Aggregation of 1G, 10G, 25G and 40G network ports
  • Support for filtering rules (MAC, VLAN, IPv4/IPv6, TCP/UDP, DSCP, TCP flags, MPLS)
  • Filtering within a tunnel (GTP, L2TP, MPLS, GRE, etc.)
  • Aggregation and regeneration of all network traffic
  • Support for user-defined filtering rules (UDF)
  • Multiple management options (CLI, SSH, SNMP V2/V3, WEB UI, Net CONF and REST API)
  • Line rate performance without packet loss
  • Non-blocking backplane architecture with N+1 redundancy
  • Clustering of multiple Network Packet Broker systems
  • Support for L3GRE tunneling protocol
  • Load balancing based on 5-tuple criteria
  • Port splitting (simplex mode)
  • Port Labeling
  • Support for Jumbo Frames
  • Digital Diagnostics Monitoring (DDM)
  • Radius and TACACS+
  • Modular due to SFP+/QSFP+ interfaces
  • Logging through syslog and SNMP traps
  • N+1 redundant, hot-swappable fans
  • Hot-swappable, load-sharing and redundant AC/DC power supplies


Download Datasheet

Contact Us
Unser Online-Shop

DOWNLOADS:

DATASHEET
NEOXPacketLion Family

NEOXPacketLion Product-Family - Datasheet Download

DATASHEET
NEOXPacketLion NX-PBPL-3XL

NEOXPacketLion NX-PBPL-3XL - Datasheet Download

DATASHEET
NEOXPacketLion NX-PBPL-2L

Datasheet PacketLion NX-PBPL-2L Network Packet Broker

DATASHEET
NEOXPacketLion NX-PBPL-2M

Datasheet PacketLion NX-PBPL-2M Network Packet Broker

DATASHEET
NEOXPacketLion NX-PBPL-1L

Datasheet-Cover_PacketLion_NX-PBPL-1L_EN

DATASHEET
NEOXPacketLion NX-PBPL-1M

Datasheet-Cover_PacketLion_NX-PBPL-1M_EN

DATASHEET
NEOXPacketLion NX-PBPL-1S

Datasheet-Cover_PacketLion_NX-PBPL-1S_EN

We will be happy to consult you and look forward to hearing from you!