|
Support, Licensing and Training Learn more about IP Fabrics’ support and training, licensing, and subscription and royalty pricing. IP Network Surveillance Using DeepSweep Learn more about how IP Fabrics’ DeepSweep is used in IP network surveillance applications.
Learn more about how IP Fabrics’ DeepSweep achieves its high performance. | DeepProbe-1 and DeepProbe-10The industry's only intelligent surveillance probes for 1Gbps and 10Gbps IP networks!The IP Fabrics DeepProbe™ is the latest member of the DeepSweep™ family of networks surveillance systems and functions as an intelligent probe under the control of a separate surveillance element such as a mediation system. Designed to be used in distributed surveillance environments, the DeepProbe is ideal for monitoring large and complex networks. DeepProbe has the capability to fully inspect every network packet, so the controlling mediation systems don’t need to rely on CMTSs, switches, routers or other probes for filtering and intercept. Unique Discovery Model Target discovery in the DeepProbe is provided via the innovative Surveillance Module ™ architecture. To the user, Surveillance Modules (SMs) are a series of well-defined, secure ASN.1 commands, which are designed for specific surveillance techniques. For example, there are SMs for discovering webmail traffic, user-id login (e.g., radius or DHCP), and VoIP traffic. These are termed ‘application-level’ SMs, since they deal with specific target applications/usages. Other SMs include those geared towards monitoring more generic flows (conversations) based on specific packet header or content characteristics. These are termed ‘protocol-level’ SMs since these require the user to be somewhat knowledgeable of specific packet header and/or content values. Table 1 provides a summary of the DeepProbe Surveillance Modules.
Once the target is discovered, the DeepProbe offers flexible intercept options, including the ability to deliver the entire data stream or just a summary and key events. DeepProbe also incorporates sophisticaed reconsutruction logic to deliver only pertinent information when interceptiong complex applications such as webmail and chat/IM, greatly reducing the processing required by the monitoring and analytic systems.
1Gbps and 10Gbs Models DeepProbe comes in two basic models. The first is for monitoring 10/100/1000Mbps networks and is available in four and eight port versions. The second is for monitoring 10Gbps networks and is available with four 10Gbps and six 10/100/1000Mbps surveillance ports. Both models support multiple, dynamically updatable targets and also come with two 10/100/1000Mbps system ports.
High Performance, Scalable Architecture IP Fabrics’ Surveillance Module™ architecture and underlying patent-pending multi-core virtualization technology give DeepProbe many unique advantages over basic “PC-based” surveillance systems or hard-wired ASIC-based systems. DeepSweep’s internal host processors and multi-core packet inspection accelerators allow it to monitor multiple 1Gbps and 10Gbps Ethernet links at true wire-speed with full layer 2-7 deep packet inspection (DPI) capabilities.
Secure, Reliable Provisioning The DeepProbe is typically provisioned and managed by a centralized mediation via the system ports using a set of simple, yet powerful commands. Each provisioning command is securely authenticated to prevent use by an unauthorized system. Consistent with other DeepSweep systems, an easy-to-use, secure web-based interface is also included.
For complete specifications, please refer to the DeepProbe Datasheet. For more information about Network Surveillance using DeepProbe, please refer to the IP Network Surveillance Whitepaper.
Learn more about IP Fabrics products and technology by visiting the Resource Center or Contact Us to have an IP Fabrics sales representative provide you further information. |
