PacketShark - Providing network transparency into TLS/SSl network traffic

PacketShark offers an all-in-one solution to improve SSL infrastructure, providing security devices with visibility into TLS/SSL encrypted traffic and optimizing existing security investments. It supports policy-based traffic management and easily integrates with current architectures, while centralizing SSL decryption and encryption using the latest technologies across the security framework.

Multi-Layered Security

To effectively protect an enterprise network from both internal and external threats, a range of security devices is essential. Traditionally, addressing security challenges has involved administrators manually linking various point products to form a „security stack“. PacketShark integrates with leading security vendors, allowing deployment within a „secure decrypt zone“ to safeguard the entire network against encrypted threats. PacketShark works seamlessly with:

  • Firewalls
  • Intrusion Prevention Systems (IPS)
  • Unified Threat Management (UTM) platforms
  • Data Loss Prevention (DLP) tools
  • Network Detection and Response (NDR)
  • Web Application Firewall
  • Threat prevention platforms
  • Network forensics and web monitoring solutions

Dynamic Visibility Plane

Dynamic service chaining offers a more flexible approach by routing traffic based on the Security Policy context. This enables specific types of traffic to flow through tailored chains of services, such as layer 2 and layer 3 inline services, receive-only services, ICAP, and HTTP web proxy services, optimizing security based on traffic needs.

PacketShark uses advanced URL classification to categorize traffic from domains, allowing selective bypass of decryption to protect sensitive data such as medical or financial records, ensuring compliance with standards like HIPAA. Additionally, its URL filtering feature boosts employee productivity and mitigates risks by blocking access to malicious websites, including those linked to malware, spam, and phishing.

Modular and Flexible

The PacketShark is a modular solution that keeps up with the process of ever-growing networks with its possibility to utilize NMC modules to increase the port density if required. To add more protection to the solution these NMC modules are also available with integrated Bypass functionionailty, handing over full control of the network links to the user. In combination with an external PacketHawk Inline Bypass and PacketLion Network Packet Brokers one can scale their security design to an unlimited degree.

KEY FEATURES

  • Inbound and Outbound Decryption
    • Ability to decrypt/encrypt both incoming and outgoing TLS/SSL traffic to provide visibility to Security tools such as IDS, NDR, WAF, Forensics etc.
  • TLS 1.3 Support
    • Can handle multiple encryption protocols, such as SSL 3.0, TLS 1.0, 1.1, 1.2, and TLS 1.3
  • URL Classification
    • PacketShark‘s URL classification system categorizes traffic, enabling selective decryption bypass to protect privacy. This ensures sensitive data, like medical or financial records, stays encrypted and complies with regulations such as HIPAA.
  • URL Filtering
    • URL filtering enhances employee productivity and mitigates risks by blocking access to malicious websites, such as those hosting malware, spam, or phishing attacks.
  • Policy-Based Traffic Control
    • Policies to control what types of traffic should be decrypted and inspected, ensuring flexibility in managing different traffic flows.
  • Inline and Out-of-Band Deployment
    • Enables real-time decryption of network traffic and offers the option to mirror or copy traffic for inspection without adding latency.
  • Integration with Security Ecosystems
    • Integrates seamlessly with NGFWs, IDS/IPS, DLP, and other security tools to share decrypted traffic for inspection.
  • Logging and Auditing
    • Full audit trail and logging capabilities to comply with regulatory requirements (e.g., GDPR, HIPAA, PCI DSS).

BEISPIEL SZENARIO

PacketRoo - Secure-File-Transfer - Example-Scenario
PacketRoo – Beispiel Deployment-Szenario

TECHNISCHE SPEZIFIKATIONEN

Hardware

  • Redundante und hot-swappable DC-Netzteile
  • 2x 1G LAN

Abmessungen & Gewicht

  • Größe: 70 mm x 32 mm x 135 mm (B x H x T)
  • Gewicht: 260 g

Relative Luftfeuchtigkeit

  • 8% bis 90% relative Luftfeuchtigkeit (Rh), 85°C (176°F) maximale Temperatur, nicht kondensierend

Stromversorgung

  • 1x DC 5V (inkludiert)
  • 1x DC 12-48 V

Betriebstemperaur

  • 10° bis 85° C auf Meereshöhe

ARTIKELNUMMERN

PacketRoo DatenDiode - Frontansicht
PacketRoo – Frontansicht

PacketRoo DatenDiode - Rückansicht
PacketRoo – Rückansicht

Artikelnummer Beschreibung
PRO-DD-1G 2x RJ45
PRO-SFT-SW Software für Windows & Linux

ZUBEHÖR

ARTIKELNUMMER BESCHREIBUNG
PRP-1U3-V2 Serverschrank-Einbaurahmen für 3x PacketRoo
PRP-1U3-BP-V2 Blindplatte für Einbaurahmen PRP-1U3-V2

Unidirektionaler Datenfluss
Galvanische Trennung
Hersteller- unabhängig
Air Gap Assurance
Für rauhe Umgebungen
Fehlervermeidung durch fixe Konfiguration
Windows & Linux Support
Entworfen, assembliert, zertifiziert und getestet in Deutschland
Made in Germany
Kontaktieren Sie uns
Unser Online-Shop

DOWNLOADS:

PacketShark-Datasheet-Download.
Datasheet PacketShark

Kunden, die sich dieses Produkt angesehen haben, haben sich auch für folgende Produkte interessiert:

PacketRaven Portable

PORTABLE & RACKMOUNTABLE
Netzwerk-TAPs

PacketRaven Modular

MODULARE HD
Netzwerk-TAPs

PacketRaven Hardened

IEC62443 HARDENED
Netzwerk-TAPs

PacketRaven Y-Kabel

Y-KABEL für
Fiber Netzwerk-TAPs

Y-Kabel für Fiber/Glasfaser Netzwerk-TAPs

Wir beraten Sie gerne und freuen uns über Ihre Kontaktaufnahme!