Ultra-Fast Recording, Indexing, Searching and Analysis
of Network Data in Real-Time!
Networks continue to increase in speed and complexity. Security attacks will also continue to evolve in terms of complexity and stealth.
For optimal and secure IT service quality, IT security teams must have permanent access to detailed analyses of data traffic. Network forensics provides this essential access and insight that security analysts need.
Our PacketFalcon products are powerful recording devices for all types of speeds, enabling IT organizations to analyze, monitor and accurately record traffic without compromise. PacketFalcon allows permanent 24 x 7 access to 1G, 10G, 25G, 40G and 100G network media for detailed analysis, including forensic analysis of past events.
PacketFalcon helps security teams analyze by recording data at key network points while keeping the traffic that can result from this data collection as low as possible. By indexing the data and providing simple and complex filters (Berkeley Packet Filter), PacketFalcon enables security teams to quickly investigate and stop attacks, even when they occur on advanced high-speed networks such as 40G or 100G network topologies.
With NEOXPacketFalcon, the proven LiveAction Deep Packet Inspection technology can be quickly and easily brought even to remote network segments.
With its robust construction and Linux as operating system, either 25 TB, 51 TB, 102 TB or 240 TB disk storage and 1G/10G/25G/40G/100G high performance Gigabit Capture Adapter, it is the ideal companion for the mobile network analysis and forensic specialist.
Highlights
- Lossless recording up to 100 Gbps
- Acceleration of Mean-Time-To-Resolution (MTTR) through visualization and interaction with meta data, communication flows and the packets themselves
- Extensive insight into the functioning of networks and applications including application detection/classification
- Analysis of network traffic in each remote segment, support for 1/10/25/40/100 Gigabit Ethernet
- Voice and Video over IP quality metrics (MOS Score), including overview statistics and comprehensive analysis of signaling and RTP media flows
- Packet-based analysis of communication relationships, visualized in intuitive graphical displays
- Integrated, reliable expert events, indication of anomalies via OSI Layer 2-7
- Recording of terabytes of traffic without packet loss
- Hardware/FPGA based Timestamping with nanosecond accuracy
- PTP support for external time synchronization according to IEEE 1588v2
- Simultaneous unlimited access via Web GUI ("Peek")
- Hardware/FPGA based Packet Slicing and Capture Filter
- Hardware/FPGA based Deduplication
- 8GB/12 GB hardware buffer for absorbing and analyzing microbursts
- Patented drill-down function
- PCAP and PCAPNG support
- Support for IEEE 1588v2 PTP
- Trolley included
- Optional: Hard shell case with CNC milled foam for transport
- Development and quality assurance in Germany
Hardware Overview
- High-speed FPGA capture cards for 1G/10G/25G/40G/100G
- Storage capacity between 25 TB and 240 TB
- 128/256 GB DDR4 RAM (optional up to 1024 GB RAM)
- 17,3“ Full HD 1920 x 1080 Display
- Robust aluminium housing
- AMD EPYC CPU
- 10G Ethernet Management Interface
- USB 3.0, USB 2.0, Serial Port, Hardware RAID 0, 5, 6, 00, 50, 60
- Operating System on separate NVMe M2 SSD
- 16x 2.5″ SSD removable frame
- Support for hardware-encrypted capture storage, protects your data from unauthorized access. FIPS 140-2 certification and complies with ISO/IEC 27040 and NIST 800-88 standards
- Keyboard, lockable as display protection during transport
- Quiet fans, 658 W Power supply
- Dimensions (W x H x D): 43.5 x 37.3 x 17.8 cm, approx. 15 kg
- Optional: Hard case with CNC-milled foam for transport
Preinstalled software and NICs
The NEOXPacketFalcon is delivered with a combination of leading software and hardware solutions and contains the following components:
- LiveCapture (Software)
- Lossless capture and recording of 1G, 10G, 25G, 40G and 100G network traffic while ensuring full data integrity.
- Powerful data preparation tools that allow IT technicians to focus on specific time periods and types of traffic.
- Integrated analytics, including expert analysis and critical network metrics such as top talkers and top protocols, all of which contribute to accelerated investigation of potential attacks.
- The network data is provided with a hardware time stamp with nanosecond accuracy on arrival. GPS, PPS, PTP and other external time sources are supported.
You can get more information about LiveCapture here.
![]() |
Lossless recording up to100G |
![]() |
Up to 3 FPGA Capture Cards |
![]() |
Storage Capacity up to 240 TB |
![]() |
HW Encrypted Capture Storage |
![]() |
FPGA based Nanosecond Timestamping |
![]() |
FPGA based Packet Slicing & Capture Filter |
![]() |
FPGA based Deduplication |
![]() |
Hardware RAID 0,5,6,00,50,60 |
![]() |
PCAP & PCAPNG Support |
![]() |
Optional transport case |
![]() |
Developed & QA in Germany |
DOWNLOADS
Brochure
PacketFalcon
Datasheet
PacketFalcon
- Napatech (Capture card)
The NEOXPacketFalcon can be used simultaneously with three of the following network measurement and capture cards:- 1G/10G/25G (High Performance) FPGA Capture Cards (SFP/SFP+/SFP28)
- 25G/40G/100G (High Performance) FPGA Capture Cards (QSFP+/QSFP28)
For more information about Napatech’s capture cards, click here.
PacketFalcon MODELS & OPTIONS
ARTICLE NO. | CPU | RAM | SSD | PORTS |
---|---|---|---|---|
NX-LC-25G-24TB-PT-* | AMD EPYC | 128 GB | 24 TB | 4x 1G/10G/25G SFP28 |
NX-LC-25G-51TB-PT-* | AMD EPYC | 128 GB | 51 TB | 4x 1G/10G/25G SFP28 |
NX-LC-25G-102TB-PT-* | AMD EPYC | 128 GB | 102 TB | 4x 1G/10G/25G SFP28 |
NX-LC-25G-240TB-PT-* | AMD EPYC | 128 GB | 240 TB | 4x 1G/10G/25G SFP28 |
NX-LC-40G-24TB-PT-* | AMD EPYC | 128 GB | 24 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-40G-51TB-PT-* | AMD EPYC | 128 GB | 51 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-40G-102TB-PT-* | AMD EPYC | 128 GB | 102 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-40G-240TB-PT-* | AMD EPYC | 128 GB | 240 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-100G-24TB-PT-* | AMD EPYC | 256 GB | 24 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-100G-51TB-PT-* | AMD EPYC | 256 GB | 51 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-100G-102TB-PT-* | AMD EPYC | 256 GB | 102 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-100G-240TB-PT-* | AMD EPYC | 256 GB | 240 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-25G100G-24TB-PT-* | AMD EPYC | 256 GB | 24 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
NX-LC-25G100G-51TB-PT-* | AMD EPYC | 256 GB | 51 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
NX-LC-25G100G-102TB-PT-* | AMD EPYC | 256 GB | 102 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
NX-LC-25G100G-240TB-PT-* | AMD EPYC | 256 GB | 240 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
* „3Y“ for 3 year – or „5Y“ for 5 year software subscription and hardware support
PacketFalcon UPGRADES
ARTICLE NO. | DESCRIPTION |
---|---|
NX-LC-UPG-100G | Upgrade of the PacketFalcon system to support 2x 100G. Applicable for systems with already installed 40G capture cards like NX-LC-40G-xxxx-PT. |
NX-LC-UPG-40G | Upgrade of the PacketFalcon system to support 2x 40G. Applicable for systems with already installed 25G capture cards like NX-LC-25G-xxxx-PT. |
NX-LC-UPG-256GB | Upgrade of the PacketFalcon system from 128 GB to 256 GB RAM |
NX-LC-UPG-HSK | Hard shell case with CNC milled foam for transport |