The Myricom nVoy Series 10Gbit Packet Recorder
Myricom nVoy Series 10Gbit Packet Recorder
The Myricom® nVoy Series 10Gbit Packet Recorder makes it easy to droplessly record and index 10Gbit network traffic. Users can take advantage of these recordings to address issues such as security, compliance, forensics, and real-time threat mitigation.
Today, with cyber attacks increasing in scope and sophistication, security teams require packet recorders capable of indexing and recording packets without dropping a single one. This is needed to form a 360 view of an incident because any packet could be involved in an attack or contain a clue to a network performance problem.
The nVoy Series Packet Recorder is built on the proven performance of CSPi’s leading Myricom ARC Series network adapters. This means it is capable of capturing packets at 1 or 10G speeds without drops, while delivering extremely accurate timestamping capabilities.
When added to the nVoy packet recorder, the Event Driven Data Recoding (EDDR) application automatically ingests alert events from next-generation firewalls or IDS systems. The application parses and isolates alerts which only involve critical assets. From these alerts EDDR utilizes the source and/or target address, along with the recorded timestamps to automatically trigger the nVoy Packet Recorder to produce an extraction file of all the conversations between the identified devices – backwards and forward in time. Learn more about EDDR.
Security Forensics and Threat Mitigation
Firewalls or other security tools generate numerous incident alert logs. This is a good starting point, but it does not provide the data needed to understand the scope of the attack, nor perform effective forensic analysis. Alert log metadata will enable the isolation of data markers or search parameters, but having the recorded detail enables you to run a more thorough forensic analysis, looking back or forward in time and locate or isolate the suspicious activity. In addition, all recorded data can be saved for future analysis or sent to a sandbox environment for further analysis.
By filtering and recording all of the traffic flows involving just your critical data, such as highly-regulated information, you reduce the amount of network traffic looked at while maintaining a high-fidelity record of the traffic that you are most interested in. This benefits security teams that use forensic tools where operating costs are based on data ingested, like Splunk, as it provides a cost-savings benefit since the scope of the data has been dramatically reduced.
Auditing and Compliance
Some businesses in regulated industries demand an accurate, time-stamped record of specific packets to meet compliance requirements, as well as provide detailed auditing, outlining cyber breach details including such items as dates, times and extent of data loss. CSPi can help organizations in financial, government, and retail meet regulation requirements found in NIST, HIPPA, SOX and PCI DSS and the soon-to-be-launched European Unions’ 2018 GDRP data privacy regulation.
Users can enable real-time pcap compression to reduce the effective written extending the capture window within the same device. Certain network traffic patterns better lend themselves to this type of compression, such as high frequency trading (HFT) traffic, file transfers, email exchanges and other transactions.
Powerful, Intuitive Web Interface
The nVoy Series Packet Recorder also provides a powerful, intuitive user interface for capture and recording configuration, system management, and packet retrieval. This dashboard view provides a high-level view of the state of the recorder, including processor, memory, and disk storage utilization.
|Form Factor||2U Rackmount|
|Capture Ports||2 x 1/10G SFP/SFP+ but the combined bandwidth to disk is limited to a single, saturated port|
|Management Port||RJ45 modular connector supporting up to 1 Gbit Ethernet|
|Standard Storage Capacity||24 x 1.2 = 28.8TB|
General Operating Capabilities
|Capture Ports||Up to 14.88 Mpps|
|Management Port||RJ45 modular connector supporting up to 1GBit ethernet|
|Configuration and Management||Web Interface|
|Product Number||Model Number||Product Description|
|18-16050||20G-REC- 24×1.2||Myricom nVoy Series 10G packet recorder|
Operate with maximum accountability and provability.