PacketShark offers an all-in-one solution to improve SSL infrastructure, providing security devices with visibility into TLS/SSL encrypted traffic and optimizing existing security investments. It supports policy-based traffic management and easily integrates with current architectures, while centralizing SSL decryption and encryption using the latest technologies across the security framework.
Multi-Layered Security
To effectively protect an enterprise network from both internal and external threats, a range of security devices is essential. Traditionally, addressing security challenges has involved administrators manually linking various point products to form a „security stack“. PacketShark integrates with leading security vendors, allowing deployment within a „secure decrypt zone“ to safeguard the entire network against encrypted threats. PacketShark works seamlessly with:
- Firewalls
- Intrusion Prevention Systems (IPS)
- Unified Threat Management (UTM) platforms
- Data Loss Prevention (DLP) tools
- Network Detection and Response (NDR)
- Web Application Firewall
- Threat prevention platforms
- Network forensics and web monitoring solutions
Dynamic Visibility Plane
Dynamic service chaining offers a more flexible approach by routing traffic based on the Security Policy context. This enables specific types of traffic to flow through tailored chains of services, such as layer 2 and layer 3 inline services, receive-only services, ICAP, and HTTP web proxy services, optimizing security based on traffic needs.
PacketShark uses advanced URL classification to categorize traffic from domains, allowing selective bypass of decryption to protect sensitive data such as medical or financial records, ensuring compliance with standards like HIPAA. Additionally, its URL filtering feature boosts employee productivity and mitigates risks by blocking access to malicious websites, including those linked to malware, spam, and phishing.
Modular and Flexible
The PacketShark is a modular solution that keeps up with the process of ever-growing networks with its possibility to utilize NMC modules to increase the port density if required. To add more protection to the solution these NMC modules are also available with integrated Bypass functionionailty, handing over full control of the network links to the user. In combination with an external PacketHawk Inline Bypass and PacketLion Network Packet Brokers one can scale their security design to an unlimited degree.
KEY FEATURES
- Inbound and Outbound Decryption
- Ability to decrypt/encrypt both incoming and outgoing TLS/SSL traffic to provide visibility to Security tools such as IDS, NDR, WAF, Forensics etc.
- TLS 1.3 Support
- Can handle multiple encryption protocols, such as SSL 3.0, TLS 1.0, 1.1, 1.2, and TLS 1.3
- URL Classification
- PacketShark‘s URL classification system categorizes traffic, enabling selective decryption bypass to protect privacy. This ensures sensitive data, like medical or financial records, stays encrypted and complies with regulations such as HIPAA.
- URL Filtering
- URL filtering enhances employee productivity and mitigates risks by blocking access to malicious websites, such as those hosting malware, spam, or phishing attacks.
- Policy-Based Traffic Control
- Policies to control what types of traffic should be decrypted and inspected, ensuring flexibility in managing different traffic flows.
- Inline and Out-of-Band Deployment
- Enables real-time decryption of network traffic and offers the option to mirror or copy traffic for inspection without adding latency.
- Integration with Security Ecosystems
- Integrates seamlessly with NGFWs, IDS/IPS, DLP, and other security tools to share decrypted traffic for inspection.
- Logging and Auditing
- Full audit trail and logging capabilities to comply with regulatory requirements (e.g., GDPR, HIPAA, PCI DSS).
BEISPIEL SZENARIO
TECHNISCHE SPEZIFIKATIONEN
Hardware
- Redundante und hot-swappable DC-Netzteile
- 2x 1G LAN
Abmessungen & Gewicht
- Größe: 70 mm x 32 mm x 135 mm (B x H x T)
- Gewicht: 260 g
Relative Luftfeuchtigkeit
- 8% bis 90% relative Luftfeuchtigkeit (Rh), 85°C (176°F) maximale Temperatur, nicht kondensierend
Stromversorgung
- 1x DC 5V (inkludiert)
- 1x DC 12-48 V
Betriebstemperaur
- 10° bis 85° C auf Meereshöhe
ARTIKELNUMMERN
Artikelnummer | Beschreibung |
---|---|
PRO-DD-1G | 2x RJ45 |
PRO-SFT-SW | Software für Windows & Linux |
ZUBEHÖR
ARTIKELNUMMER | BESCHREIBUNG |
---|---|
PRP-1U3-V2 | Serverschrank-Einbaurahmen für 3x PacketRoo |
PRP-1U3-BP-V2 | Blindplatte für Einbaurahmen PRP-1U3-V2 |