The Myricom nVoy Series 10Gbit Packet Recorder

Myricom nVoy Series 10Gbit Packet Recorder

 

The Myricom® nVoy Series 10Gbit Packet Recorder makes it easy to droplessly record and index 10Gbit network traffic. Users can take advantage of these recordings to address issues such as security, compliance, forensics, and real-time threat mitigation.

Packet Recorder

Performance

Today, with cyber attacks increasing in scope and sophistication, security teams require packet recorders capable of indexing and recording packets without dropping a single one. This is needed to form a 360 view of an incident because any packet could be involved in an attack or contain a clue to a network performance problem.

The nVoy Series Packet Recorder is built on the proven performance of CSPi’s leading Myricom ARC Series network adapters. This means it is capable of capturing packets at 1 or 10G speeds without drops, while delivering extremely accurate timestamping capabilities.

Automation

When added to the nVoy packet recorder, the Event Driven Data Recoding (EDDR) application automatically ingests alert events from next-generation firewalls or IDS systems. The application parses and isolates alerts which only involve critical assets. From these alerts EDDR utilizes the source and/or target address, along with the recorded timestamps to automatically trigger the nVoy Packet Recorder to produce an extraction file of all the conversations between the identified devices – backwards and forward in time. Learn more about EDDR.

Download the Datasheet

Security Forensics and Threat Mitigation

Firewalls or other security tools generate numerous incident alert logs. This is a good starting point, but it does not provide the data needed to understand the scope of the attack, nor perform effective forensic analysis. Alert log metadata will enable the isolation of data markers or search parameters, but having the recorded detail enables you to run a more thorough forensic analysis, looking back or forward in time and locate or isolate the suspicious activity. In addition, all recorded data can be saved for future analysis or sent to a sandbox environment for further analysis.

By filtering and recording all of the traffic flows involving just your critical data, such as highly-regulated information, you reduce the amount of network traffic looked at while maintaining a high-fidelity record of the traffic that you are most interested in. This benefits security teams that use forensic tools where operating costs are based on data ingested, like Splunk, as it provides a cost-savings benefit since the scope of the data has been dramatically reduced.

Auditing and Compliance

Some businesses in regulated industries demand an accurate, time-stamped record of specific packets to meet compliance requirements, as well as provide detailed auditing, outlining cyber breach details including such items as dates, times and extent of data loss. CSPi can help organizations in financial, government, and retail meet regulation requirements found in NIST, HIPPA, SOX and PCI DSS and the soon-to-be-launched European Unions’ 2018 GDRP data privacy regulation.

Real-time compression

Users can enable real-time pcap compression to reduce the effective written extending the capture window within the same device. Certain network traffic patterns better lend themselves to this type of compression, such as high frequency trading (HFT) traffic, file transfers, email exchanges and other transactions.

Powerful, Intuitive Web Interface

The nVoy Series Packet Recorder also provides a powerful, intuitive user interface for capture and recording configuration, system management, and packet retrieval. This dashboard view provides a high-level view of the state of the recorder, including processor, memory, and disk storage utilization.

Specifications

Form Factor 2U Rackmount
Capture Ports 2 x 1/10G SFP/SFP+ but the combined bandwidth to disk is limited to a single, saturated port
Management Port RJ45 modular connector supporting up to 1 Gbit Ethernet
Standard Storage Capacity 24 x 1.2 = 28.8TB

(Optional Expansion Available)

General Operating Capabilities

Capture Ports Up to 14.88 Mpps
Management Port RJ45 modular connector supporting up to 1GBit ethernet
Timestamp Accuracy ±30ns
Configuration and Management Web Interface

Configuration Options

Product Number Model Number Product Description
18-16050 20G-REC- 24×1.2 Myricom nVoy Series 10G packet recorder

Operate with maximum accountability and provability.