Our PacketFalcon products are powerful recording devices for all types of speeds, enabling IT organizations to analyze, monitor and accurately record traffic without compromise. PacketFalcon allows permanent 24 x 7 access to 1G, 10G, 25G, 40G and 100G network media for detailed analysis, including forensic analysis of past events.
PacketFalcon helps security teams analyze by recording data at key network points while keeping the traffic that can result from this data collection as low as possible. By indexing the data and providing simple and complex filters (Berkeley Packet Filter), PacketFalcon enables security teams to quickly investigate and stop attacks, even when they occur on advanced high-speed networks such as 40G or 100G network topologies.
With NEOXPacketFalcon, even our proven Deep Packet Inspection technology can be quickly and easily brought even to remote network segments.
With its robust construction and Linux as operating system, either 25 TB, 51 TB, 102 TB or 240 TB disk storage and 1G/10G/25G/40G/100G high performance Gigabit Capture Adapter, it is the ideal companion for the mobile network analysis and forensic specialist.
Highlights
- Lossless recording up to 100 Gbps
- Acceleration of Mean-Time-To-Resolution (MTTR) through visualization and interaction with meta data, communication flows and the packets themselves
- Extensive insight into the functioning of networks and applications including application detection/classification
- Analysis of network traffic in each remote segment, support for 1/10/25/40/100 Gigabit Ethernet
- Voice and Video over IP quality metrics (MOS Score), including overview statistics and comprehensive analysis of signaling and RTP media flows
- Packet-based analysis of communication relationships, visualized in intuitive graphical displays
- Integrated, reliable expert events, indication of anomalies via OSI Layer 2-7
- Recording of terabytes of traffic without packet loss
- Hardware/FPGA based Timestamping with nanosecond accuracy
- PTP support for external time synchronization according to IEEE 1588v2
- Simultaneous unlimited access via Web GUI
- Hardware/FPGA based Packet Slicing and Capture Filter
- Hardware/FPGA based Deduplication
- 8GB/12 GB hardware buffer for absorbing and analyzing microbursts
- Patented drill-down function
- PCAP and PCAPNG support
- Support for IEEE 1588v2 PTP
- Trolley included
- Optional: Hard shell case with CNC milled foam for transport
- Development and quality assurance in Germany
Hardware Overview
- High-speed FPGA capture cards for 1G/10G/25G/40G/100G
- Storage capacity between 25 TB and 240 TB
- 256 GB DDR4 RAM (optional up to 1024 GB RAM)
- 17,3“ Full HD 1920 x 1080 Display
- Robust aluminium housing
- AMD EPYC CPU
- 10G Ethernet Management Interface
- USB 3.0, USB 2.0, Serial Port, Hardware RAID 0, 5, 6, 00, 50, 60
- Operating System on separate NVMe M2 SSD
- 16x 2.5″ SSD removable frame
- Support for hardware-encrypted capture storage, protects your data from unauthorized access. FIPS 140-2 certification and complies with ISO/IEC 27040 and NIST 800-88 standards
- Keyboard, lockable as display protection during transport
- Quiet fans, 658 W Power supply
- Dimensions (W x H x D): 43.5 x 37.3 x 17.8 cm, approx. 15 kg
- Optional: Hard case with CNC-milled foam for transport
|
Lossless recording up to100G |
|
Up to 3 FPGA Capture Cards |
|
Storage Capacity up to 240 TB |
|
HW Encrypted Capture Storage |
|
FPGA based Nanosecond Timestamping |
|
FPGA based Packet Slicing & Capture Filter |
|
FPGA based Deduplication |
|
Hardware RAID 0,5,6,00,50,60 |
|
PCAP & PCAPNG Support |
|
Optional transport case |
|
Developed & QA in Germany |
DOWNLOADS
Brochure
PacketFalcon Portable
Datasheet
PacketFalcon Portable
Preinstalled software and hardware
The NEOXPacketFalcon is delivered with a combination of leading software and hardware solutions and contains the following components:
- Network Forensics Software
- Lossless capture and recording of 1G, 10G, 25G, 40G and 100G network traffic while ensuring full data integrity.
- Powerful data preparation tools that allow IT technicians to focus on specific time periods and types of traffic.
- Integrated analytics, including expert analysis and critical network metrics such as top talkers and top protocols, all of which contribute to accelerated investigation of potential attacks.
- The network data is provided with a hardware time stamp with nanosecond accuracy on arrival. GPS, PPS, PTP and other external time sources are supported.
- Napatech (capture card)
The NEOXPacketFalcon can be used simultaneously with three of the following network measurement and capture cards:- 1G/10G/25G (High Performance) FPGA Capture Cards (SFP/SFP+/SFP28)
- 25G/40G/100G (High Performance) FPGA Capture Cards (QSFP+/QSFP28)
For more information about Napatech’s capture cards, click here.
PacketFalcon MODELS & OPTIONS
ARTICLE NO. | CPU | RAM | SSD | PORTS |
---|---|---|---|---|
NX-LC-25G-24TB-PT* | AMD EPYC | 256 GB | 24 TB | 4x 1G/10G/25G SFP28 |
NX-LC-25G-51TB-PT* | AMD EPYC | 256 GB | 51 TB | 4x 1G/10G/25G SFP28 |
NX-LC-25G-102TB-PT* | AMD EPYC | 256 GB | 102 TB | 4x 1G/10G/25G SFP28 |
NX-LC-25G-240TB-PT* | AMD EPYC | 256 GB | 240 TB | 4x 1G/10G/25G SFP28 |
NX-LC-40G-24TB-PT* | AMD EPYC | 256 GB | 24 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-40G-51TB-PT* | AMD EPYC | 256 GB | 51 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-40G-102TB-PT* | AMD EPYC | 256 GB | 102 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-40G-240TB-PT* | AMD EPYC | 256 GB | 240 TB | 2x 40G QSFP+ / 8x 10G (Fan-out) |
NX-LC-100G-24TB-PT* | AMD EPYC | 256 GB | 24 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-100G-51TB-PT* | AMD EPYC | 256 GB | 51 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-100G-102TB-PT* | AMD EPYC | 256 GB | 102 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-100G-240TB-PT* | AMD EPYC | 256 GB | 240 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 2x 25G (Adapter) / 8x 10G (Fan-out) |
NX-LC-25G100G-24TB-PT* | AMD EPYC | 256 GB | 24 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
NX-LC-25G100G-51TB-PT* | AMD EPYC | 256 GB | 51 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
NX-LC-25G100G-102TB-PT* | AMD EPYC | 256 GB | 102 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
NX-LC-25G100G-240TB-PT* | AMD EPYC | 256 GB | 240 TB | 2x 100G QSFP28 / 2x 40G QSFP+ / 8x 10G (Fan-out) / 4x 1G/10G/25G SFP28 |
* With „-3Y“ for 3 year – or „-5Y“ for 5 year software subscription and hardware support
PacketFalcon UPGRADES
ARTICLE NO. | DESCRIPTION |
---|---|
NX-LC-UPG-100G | Upgrade of the PacketFalcon system to support 2x 100G. Applicable for systems with already installed 40G capture cards like NX-LC-40G-xxxx-PT. |
NX-LC-UPG-40G | Upgrade of the PacketFalcon system to support 2x 40G. Applicable for systems with already installed 25G capture cards like NX-LC-25G-xxxx-PT. |
NX-LC-UPG-HSK | Hard shell case with CNC milled foam for transport |