E/10GE Network Packet Broker / Network TAP switch

    

GE/10GE Network Packet Broker / Network TAP switch, network traffic data control equipment to meet the needs of link traffic collection, traffic replication, traffic aggregation, aggregation and diversion, load balancing, filtering, and advanced preprocessing and other requirements.

The Network Packet Broker / Network TAP switch provides functions such as traffic deduplication, traffic desensitization, timestamping, slicing, truncation, packet truncation, five-tuple, seven-tuple, and traffic filtering.

It is applied to the traffic collection, preprocessing control and output scenes in the user gigabit and 10 gigabit Ethernet environment. It has the characteristics of rich family members, diverse port density, wire-speed traffic strategy execution, strong scene adaptability and easy management.

It can fully meet the requirements of APM, NPM, IDS, CDN, traffic analysis, traffic capture, packet capture, signaling analysis, behavior audit and other network security monitoring and analysis systems based on bypass deployment, flexible acquisition and fast delivery of traffic data.

Typical application scenario - centralized acquisition, output on demand

As shown in the figure above, this product is applied to the LAN environment with multiple network nodes. There are gigabit and ten Gigabit Ethernet link types. After the unified traffic data collection is carried out on key network element node links such as LAN access, convergence, backbone, etc., the customized pretreatment and diversion are then distributed to the back-end various analysis terminals, such as: Intrusion detection systems, traffic analyzers, and audit systems.

The product application deployment in this scenario involves multiple link rates (GE/10G) and multiple acquisition methods (mirror and spectrophotometer). Through flexible customization of input and output interfaces, different traffic data acquisition requirements of various analysis devices in the current network are realized.

Functional features

Flexible traffic handling mechanism

Support 1->N, M->1, M->N path traffic replication aggregation; It supports filtering based on L2-L4 packet characteristics and identification. Support vlan packet label identification processing; Support tunnel protocol identification processing; Support packet deduplication, timestamp marking, slicing, desensitization, application layer identification and other deep preprocessing (optional); Support multi-strategy combination; Support black and white lists of policy rules; Support for high-capacity policy rules.

High performance

A dedicated ASIC chip ensures wire-speed execution of traffic policies. Dedicated NP network processor guarantees high performance deep packet processing (optional). Full port wire-speed traffic forwarding.

Hybrid acquisition deployment mode

Support port mirroring and spectrophotometric acquisition; Support online serial acquisition (optional).

Centralized SDN control (optional)

It supports the centralized control of Matrix-SDN traffic data management and control platform and multi-device AD hoc network through SDN technology, and completes the visual unified collection, preprocessing, accurate control and monitoring of traffic data.

Flexible input/output combination

Support custom input and output for all ports Support arbitrary binding of input and output port groups; Support port transceiver multiplexing, single fiber sending and receiving.

A friendly and interactive experience

Support complete and friendly graphical user interface; Support perfect equipment working condition monitoring. It supports multi-dimensional traffic input and output status monitoring.

40GE/100GE Network Packet Broker / Network TAP switch

40GE/100GE Network Packet Broker / Network TAP switch, meet traffic data capturing, traffic replication, traffic aggregation, traffic distribution, load balancing, filtering, advanced preprocessing, support Web, CLI, SNMP and other management methods, support syslog local, remote logging and syslog service configuration.

The Network Packet Broker / Network TAP switch provides functions such as traffic deduplication, traffic masking, timestamping, slicing, slicing, packet truncation, five-tuple, seven-tuple, and traffic filtering.

TAP network splitter provides: configure 1 console management port, 1 MGT management interface, configure modular hot plug dual power supply.

This family of products is specially designed for traffic collection, pre-processing and distribution of densely distributed 40GE links and 100GE links such as operator mobile Internet outlet, IDC outlet, provincial network and backbone.

It is applied to the capturing, preprocessing control and output scenes in the high-bandwidth Ethernet environment. It has the characteristics of small size, high interface density, and rich network interface, large capacity switching bandwidth, ultra-fine grain flow classification, and friendly interactive interface.

It can fully meet the needs of big data deep mining, cache acceleration system, signaling analysis system, national security network security monitoring system, operator intelligent pipeline DPI system, cloud application analysis system, information push system and other application systems for flexible capturing, fine processing and fast delivery of traffic data.

Typical application scenario -40G/100G traffic capturing and distribution

Functional features

Flexible traffic handling mechanism

Support 1->N, M->1, M->N path traffic replication aggregation; It supports filtering based on L2-L4 packet characteristics and identification. Support vlan packet label identification processing; Support tunnel protocol identification and stripping (optional).

   

 VLAN Editing

It supports adding, deleting and modifying the vlan tag of the packet.

 Centralized SDN control (optional)

It supports the centralized control of Matrix-SDN traffic data management and control platform and multi-device AD hoc network through SDN technology, and completes the visual unified collection, preprocessing, accurate control and monitoring of traffic data.

Flexible input/output combination

Support custom input and output for all ports Support arbitrary binding of input and output port groups; Support port transceiver multiplexing, single fiber sending and receiving; Support 40G/100G port breakout.

Traffic deduplication

Different packet identifiers (e.g., dst.ip, src.port, dst.port, tp.seq, tp.ack, dst.mac, src.mac, vlan.id) can be selected for traffic deduplication after comparison.
    
A friendly and interactive experience

Support complete and friendly graphical user interface; Support perfect equipment working condition monitoring; It supports multi-dimensional traffic input and output status monitoring.

Packet P4 programmable (optional)

Using P4 programmable chip solution, you can customize the identification and processing method of data packets, quickly add new functions and new protocol adaptation, and meet the requirements of collection, preprocessing and control in the process of network data development and evolution.

The modular plug-in Network Packet Broker / Network TAP switch is a network traffic data control device that meets the needs of traffic data capturing, traffic replication, traffic aggregation, aggregation and distribution, load balancing, filtering, advanced preprocessing and so on.

The Network Packet Broker / Network TAP switch provides functions such as traffic deduplication, traffic desensitization, timestamping, slicing, packet slicing, five-tuple, seven-tuple, and traffic filtering.

This series of products is specially designed for traffic collection visualization of densely distributed 10GE, 40GE and 100GE links such as operator mobile Internet outlet, IDC outlet, provincial network and backbone.
By matching different functional business boards, it can smoothly cope with a variety of specifications and scales of port demand scenarios, and can meet a variety of complex traffic collection, visualization and application processing requirements.

Based on ATCA standard architecture, it has carrier-grade high reliability and strong scalability.

Typical application scenario -Operator 3G/4G/5G signaling capturing

As shown in the figure above, the deployment of high-performance, large-capacity modular plug-in traffic collection products can complete the carrier 3G/4G/5G network in any link signaling or user data collection.

After the size, structure and characteristic relationship of data traffic are identified and sorted out by this product, the target data required by the user is copied, aggregated, split or deeply preprocessed according to the application requirements, and then sent to the back-end signaling acquisition and decoding system for further processing, so as to ensure the efficient operation of the back-end system and the accurate matching use of traffic data.

Functional features

    

Flexible traffic handling mechanism

Support 1->N, M->1, M->N path traffic replication aggregation; It supports filtering based on L2-L4 packet characteristics and identification. Support vlan packet label identification processing; Support tunnel protocol identification processing; Support packet deduplication, timestamp marking, slicing, masking, application layer identification and other deep preprocessing (optional); Support multi-policy combination; Support black and white lists of policy rules; Support for high-capacity policy rules.

A friendly and interactive experience

Support complete and friendly graphical user interface; Support perfect equipment working condition monitoring; it supports multi-dimensional traffic input and output status monitoring. It supports the visual and unified management of all board resources.

Carrier-grade system architecture

Conforms to Advanced specification PICMG 3.0R2.0; RoHs compliant, Designed for CE, FCC, NEBS Level 3.

Rich interface types

Support high-density 1G, 10G, 40G, 100G link interface; Full port wire-speed traffic forwarding.

Flexible input/output combination

Support custom input and output for all ports Support arbitrary binding of input and output port groups; Support port transceiver multiplexing, single fiber sending and receiving; Support port transceiver multiplexing, single fiber sending and receiving.

VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch

The VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch family developed and launched by Chengdu Digital Communication Company is a series of comprehensive products that include data acquisition, unified scheduling and management of data, pretreatment and redistribution in the whole process of visualization. It can realize the centralized collection and reception of link data of different network element locations and different exchange routing nodes. Through the built-in high-performance data analysis and processing engine of the device, the collected original data is accurately identified, analyzed, statistically summarized and labeled, and the original data is distributed and output. Further meet all kinds of analysis and monitoring equipment for data mining, protocol analysis, signaling analysis, security analysis, risk control and other required traffic. In addition, when there are abnormal network packets and abnormal traffic fluctuations, it can carry out real-time packet capture analysis, data source verification, historical traffic query comparison and so on in the first time to help users quickly analyze and locate the point of failure.

VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch, meet the requirements of traffic data collection, traffic replication, traffic aggregation, aggregation and diversion, filtering, VLAN marking, load balancing, advanced preprocessing, etc., support Web, CLI, SNMP and other management methods. Syslog local, remote logging and syslog service configuration are supported.

The VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch provides: path analysis, traffic visualization, traffic deduplication, traffic masking, timestamping, slicing, packet slicing, five-tuple, seven-tuple, traffic filtering and other functions.

VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch provides: configure 1 console management port, 1 MGT management interface, configure modular hot plug dual power supply.

Typical application scenarios

As shown in the figure above, the user business scenarios include: network, host, database, middleware, etc. In addition to the traditional routing and switching, the transaction path may also involve load balancing, NAT and other links. In order to control the business flow, the business attention needs of IT managers usually include: tracking the network transaction path at any time; Fast protocol analysis of network traffic. In this kind of application environment, there are multiple network nodes and Ethernet link types such as GE\10G\100G, and traffic data collection is performed on GE\10G outlet, sink and 10GE\100GE backbone of the LAN. The collected traffic is distributed to the back-end analysis terminals after customized diversion, including: intrusion detection system, traffic analyzer and audit system. The VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch in the case involves a hybrid deployment scenario with multi-rate and multi-acquisition methods. The VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch provides powerful traffic detection capabilities. Its traffic detection can provide a flexible gripper for administrators to obtain traffic data at different locations of the network at any time and conduct in-depth analysis, providing original data sources for real-time fault location requirements. Moreover, because users can customize the input and output interfaces flexibly, different application requirements of traffic data for various analysis devices in the current network are realized.

 

Functional features

Data visualization

The VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch family provides industry-leading data visualization capabilities, and the system comes with an analysis engine, which is the first to realize the integration of traffic data collection, delivery and analysis on the traffic collection device. It can help users to understand the network behavior from difficult to strategic, and can greatly improve the efficiency of users 'operation and control of traffic data.

Packet analysis at the DPI level

DPI deep packet analysis can deeply analyze the captured target traffic data from multiple dimensions, and show detailed statistics in ways such as graphs and tables.

Flexible traffic handling mechanism

Support 1->N, M->1, M->N path traffic replication aggregation; Support packet filtering such as: SMAC, DMAC, SIP, DIP, Sport, Dport, TTL, SYN, ACK, FIN, Get, Post and other packet characteristics, Ethernet type field and value, IP protocol number, TOS and other L2-L4 layer packet characteristics; IP fragmentation analysis and session reassembly are supported. It supports the combination of multiple rules. Number of ACL entries up to 2K Support filtering rules black and white list.

Complex transaction path tracking

The VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch provides packet transmission path analysis and animation display, which can realize path tracking in scenarios such as forwarding times, forwarding delay, forwarding types (routing, switching, firewall, load balancing, NAT), helping users to track and analyze the performance of complex business access paths.
The traffic visualization diagnosis function of VPP Traffic Visualization Processor Network Packet Broker / Network TAP Switch family performs automatic deep correlation analysis on the traffic data captured by the probe, and analyzes the data content from multiple dimensions such as time distribution, traffic size, session distribution, protocol distribution, active communication node (IP), carrying service, packet, network and security abnormal event analysis. It helps general network administrators understand the content of traffic data and helps network analysis experts sort out the clues of traffic data analysis, so as to achieve the effect of rapid fault location and deep problem analysis. The family members can be applied to the user's GE\10G\100G Ethernet link acquisition scenario, which has the characteristics of rich family members, diverse port density, wise-speed traffic strategy execution, strong scene adaptability, and easy management.

VLAN Editing

It supports adding, deleting and modifying the vlan tag of the packet.

Intelligent traffic processing

The system provides intelligent traffic processing capabilities and can perform advanced policies, such as: timestamp marking, tunnel finalization, data deduplication, data slicing, data masking, tunnel protocol identification, application protocol identification, video stream filtering, etc.

Load balancing

Support dynamic load balancing or customized load balancing; It supports hash load balancing calculation based on IP five-tuple. Support load balancing output port group members arbitrary binding.

Flexible port matching

Support custom input and output for all ports Members of the same port group are not limited by port types. Support arbitrary binding input and output port groups; Support port transceiver multiplexing, single fiber sending and receiving.

Traffic deduplication

Different packet identifiers (e.g., dst.ip, src.port, dst.port, tp.seq, tp.ack, dst.mac, src.mac, vlan.id) can be selected for traffic deduplication after comparison.

A friendly and interactive experience

It supports unified data collection, classification and distribution, which can effectively eliminate the monitoring blind spot, so that managers can monitor the whole network status in real time.

It provides a fully graphical, multi-dimensional, consistent and friendly user interface. Provide complete equipment working status monitoring function;

It is fully compatible with big data deep mining, cache acceleration system, signaling analysis system, behavior monitoring system, operator intelligent pipeline DPI system, cloud application analysis system, information push system and other application requirements.

Inline Bypass non-modular traffic traction protector is used to provide high network reliability while deploying various types of serial safety devices to meet the safety protection requirements of GE/10GE link traffic.

It has intelligent health detection function to monitor the normal working state of the serial safety equipment in real time. Once the serial safety equipment is abnormal, the protector will automatically bypass to maintain the normal communication of the network.

Users can flexibly install/uninstall safety protection equipment without affecting and interrupting the existing network.

Selective traffic protection technology can be used to deploy specific traffic cleaning security protection equipment, audit equipment based on encryption technology, etc. Effectively implement tandem access protection for specific traffic types and offload the traffic handling pressure of tandem devices.

Load balancing traffic protection technology can meet the security requirements of cluster deployed secure concatenation devices under high bandwidth pressure environment.

Typical application scenarios 

    

Functional features

Safe and reliable serial protection

It supports the serial protection of complete link traffic and the serial protection mode of specific traffic types. It has a very low switching delay to ensure no flashover in BYPASS switching.

Rich traffic protection strategies

It supports traffic protection based on L2-L4 packet characteristics. Support multi-strategy combination; Support black and white lists of policy rules; Support for high-capacity policy rules.

Intelligent heartbeat packet detection

It supports the automatic sending of heartbeat packets in the band to the serial safety device for health detection. Support for custom heartbeat message format/type.

A friendly and interactive experience

Support complete and friendly graphical user interface; Support perfect equipment working condition monitoring; it supports multi-dimensional monitoring of traffic protection status.
  

Inline Bypass Modular flow traction protector

Inline Bypass modular traffic traction protector is used to provide high network reliability while deploying various types of serial safety equipment, to meet the safety protection requirements of 10GE/40GE/100GE and other link traffic.

Users can flexibly install/uninstall safety protection equipment without affecting and interrupting the existing network.

It has intelligent health detection function to monitor the normal working state of the serial safety equipment in real time. Once the serial safety equipment is abnormal, the protector will automatically bypass to maintain the normal communication of the network.

Selective traffic protection technology can be used to deploy specific traffic cleaning security protection equipment, audit equipment based on encryption technology, etc. Effectively implement tandem access protection for specific traffic types and offload the traffic handling pressure of tandem devices.

Load balancing traffic protection technology can meet the security requirements of cluster deployed secure concatenation devices under high bandwidth pressure environment.

Typical application scenarios

Functional features

Safe and reliable serial protection

It supports the serial protection of complete link traffic and the serial protection mode of specific traffic types. It has a very low switching delay to ensure no flashover in BYPASS switching.

A friendly and interactive experience

Support complete and friendly graphical user interface; Support perfect equipment working condition monitoring; it supports multi-dimensional monitoring of traffic protection status.

Modular design

The modular frame design is adopted, and the uniform chassis components and different interface modules are configured to meet the link protection requirements of different rates such as 10GE/40GE/100GE.

Intelligent heartbeat packet detection

It supports the automatic sending of heartbeat packets in the band to the serial safety device for health detection. Support for custom heartbeat message format/type.

Rich traffic protection policies

It supports traffic protection based on L2-L4 packet characteristics. Support multi-strategy combination; Support black and white lists of policy rules; Support for high-capacity policy rules Support WebService dynamic policy distribution.

Programmable Processor Network Packet Broker / Network TAP Switch

The Programmable Processor Network Packet Broker / Network TAP Switch family developed and launched by Chengdu Shuwei Communication Company is a series of comprehensive products with programmable data plane, unified data scheduling management, preprocessing and redistribution. Its data plane programmable feature can flexibly cope with more agile and open business environment, and it has the ability to handle new protocol adaptation and DPI operation at high speed. It can realize the centralized collection and reception of link data of different network element positions and different exchange routing nodes. Through the built-in function customization, high degree of freedom and high performance data analysis and processing engine, the collected original data is flexibly and accurately identified, analyzed, statistically summarized and labeled, and then the original data is distributed and output. Further meet all kinds of analysis and monitoring equipment for data mining, protocol analysis, signaling analysis, security analysis, risk control and other required traffic. In addition, when there are abnormal network packets and abnormal traffic fluctuations, it can carry out real-time packet capture analysis, data source verification, historical traffic query comparison and so on in the first time to help users quickly analyze and locate the point of failure.

Programmable Processor Network Packet Broker / Network TAP Switch provides programmable features, including traffic data capture, traffic replication, traffic aggregation, aggregation and distribution, load balancing, filtering, advanced preprocessing and other requirements of network traffic data control equipment.

The Programmable Processor Network Packet Broker / Network TAP Switch provides functions such as traffic deduplication, traffic masking, timestamping, slicing , packet slicing, five-tuple, seven-tuple, and traffic filtering.

Typical application scenarios

As shown in the figure above, after the development and construction of user information network, there may be many application scenarios, including: double live cloud computing center, headquarters and multiple branches, MPLS VPN, heterogeneous encapsulation nested, multi-layer nested VLAN, etc. Its business components include a variety of business systems and related business components such as network, host, database and middleware. In addition to the traditional routing and switching, the transaction path may also involve load balancing, NAT and other links. In order to control the business traffic and behavior, IT managers should pay attention to the following requirements: identification and control of new protocol traffic; Hardware-level timestamps are used for precise performance analysis, packet truncation of massive data, super large ACL, etc. In this kind of application environment, there are multiple network nodes and Ethernet link types such as GE\10G\100G, and traffic data collection is performed on GE\10G outlet, sink and 10GE\100GE backbone of the LAN. The collected traffic is distributed to the back-end analysis terminals after customized diversion, including: intrusion detection system, traffic analyzer and audit system.

Functional features

Programmable feature

The family of programmable traffic processors provides industry-leading data plane programmability. The system comes with data compilation and action execution engine, and the hardware level provides the ability to recognize new data types and execute data policies after recognition. It can efficiently implement new protocol adaptation and DPI-level data operation, and has excellent scene adaptation ability for new network functions in the industry.

Intelligent traffic processing

The system provides intelligent traffic processing capabilities and can perform advanced policies, such as: timestamp marking, tunnel finalization, data deduplication, data slicing, data masking, tunnel protocol identification, application protocol identification, video stream filtering, etc.

High performance

Dedicated programmable chip guarantees DPI processing and full line speed processing of traffic policy.

Flexible port matching

Support custom input and output for all ports Members of the same port group are not limited by port types. Support arbitrary binding input and output port groups; Support port transceiver multiplexing, single fiber sending and receiving.

A friendly and interactive experience

It supports unified data collection, classification and distribution, which can effectively eliminate the monitoring blind spot, so that managers can monitor the whole network status in real time. It provides a fully graphical, multi-dimensional, consistent and friendly user interface. It provides a fully graphical, multi-dimensional, consistent and friendly user interface. It is fully compatible with big data deep mining, cache acceleration system, signaling analysis system, behavior monitoring system, operator intelligent pipeline DPI system, cloud application analysis system, information push system and other application requirements.

Wire-speed DPI packet processing

Programmable chip based on hardware packet processing engine, can achieve deep packet inspection level protocol identification and action, and effectively eliminate the network bottleneck.

Load balancing

Support dynamic load balancing or customized load balancing; It supports hash load balancing calculation based on IP five-tuple. Support load balancing output port group members arbitrary binding.

Flexible traffic handling mechanism

Support 1->N, M->1, M->N path traffic replication aggregation; Support packet filtering such as: SMAC, DMAC, SIP, DIP, Sport, Dport, TTL, SYN, ACK, FIN, Get, Post and other packet characteristics, Ethernet type field and value, IP protocol number, TOS and other L2-L4 layer packet characteristics; IP fragmentation analysis and session reassembly are supported. IP fragmentation analysis and session reassembly are supported. IP fragmentation analysis and session reassembly are supported. Support IP fragmentation analysis and session reorganization.

Hybrid capture deployment

Support port mirroring and spectrophotometric capture.

Support more new business scenarios

With the upgrade of user service network, there are more new service scenarios, such as VxLAN, MPLS, heterogeneous encapsulation nesting, 3-layer VLAN nesting, appending hardware level timestamp, etc. It is difficult for traditional traffic control devices to meet such requirements. Programmable processors are easier to meet such challenges through programmable design of data plane.

    VPP Programmable Processor Network Packet Broker / Network TAP Switch

The VPP Programmable Processor Network Packet Broker / Network TAP Switch family developed and launched by Chengdu Digital Communication Company is a series of comprehensive products that can be programmed in the data plane and visualized in the whole process of data acquisition, unified scheduling and management of data, pre-processing and redistribution. Its data plane programmable feature can flexibly cope with more agile and open business environment, and it has the ability to handle new protocol adaptation and DPI operation at high speed. It can realize the centralized collection and reception of link data of different network element positions and different exchange routing nodes. Through the built-in function customization, high degree of freedom and high performance data analysis and processing engine, the collected original data is flexibly and accurately identified, analyzed, statistically summarized and labeled, and then the original data is distributed and output. Further meet all kinds of analysis and monitoring equipment for data mining, protocol analysis, signaling analysis, security analysis, risk control and other required traffic. In addition, when there are abnormal network packets and abnormal traffic fluctuations, it can carry out real-time packet capture analysis, data source verification, historical traffic query comparison and so on in the first time to help users quickly analyze and locate the point of failure.

VPP Programmable Processor Network Packet Broker / Network TAP Switch provides programmable features, including traffic data acquisition, traffic replication, traffic aggregation, aggregation and diversion, load balancing, filtering, advanced pretreatment and other requirements of network traffic data control equipment.

The VPP Programmable Processor Network Packet Broker / Network TAP Switch provides path analysis, traffic deduplication, traffic masking, timestamping, slicing, packet slicing, five-tuple, seven-tuple, and traffic filtering.

Typical application scenarios

As shown in the figure above, after the development and construction of user information network, there may be many application scenarios, including: double live cloud computing center, headquarters and multiple branches, MPLS, VPN, heterogeneous encapsulation nested, multi-layer nested VLAN, etc. Its business components include a variety of business systems and related business components such as network, host, database and middleware. In addition to the traditional routing and switching, the transaction path may also involve load balancing, NAT and other links. In order to control the business traffic and behavior, IT managers should pay attention to the following requirements: identification and control of new protocol traffic; Hardware-level timestamps are used for precise performance analysis, packet truncation of massive data, super large ACL, etc. In this kind of application environment, there are multiple network nodes and Ethernet link types such as GE\10G\100G, and traffic data collection is performed on GE\10G outlet, sink and 10GE\100GE backbone of the LAN. The collected traffic is distributed to the back-end analysis terminals after customized distribution, including: intrusion detection system, traffic analyzer and audit system. The VPP Programmable Processor Network Packet Broker / Network TAP Switch in the case involves a hybrid deployment scenario with multiple rates and multiple acquisition methods. The VPP Programmable Processor Network Packet Broker / Network TAP Switch provides powerful hardware-level protocol identification and processing capabilities, which can provide rich scene adaptation capabilities for users with high bandwidth and high control requirements.

Functional features

Programmable feature

The family of programmable traffic processors provides industry-leading data plane programmability. The system comes with data compilation and action execution engine, and the hardware level provides the ability to recognize new data types and execute data policies after recognition. It can efficiently implement new protocol adaptation and DPI-level data operation, and has excellent scene adaptation ability for new network functions in the industry.

Data visualization

The VPP Programmable Processor Network Packet Broker / Network TAP Switch family provides data visualization capabilities, and the system comes with an analysis engine, which is the first to realize the integration of traffic data collection, delivery and analysis on the traffic collection device, which can help users from difficult to grasp the network behavior to strategic policies, and can greatly improve the efficiency of users 'operation, maintenance and control of traffic data.

Intelligent traffic processing

The system provides intelligent traffic processing capabilities and can perform advanced policies, such as: timestamp marking, tunnel finalization, data deduplication, data slicing, data masking, tunnel protocol identification, application protocol identification, video stream filtering, etc.

High performance

A dedicated ASIC chip ensures wire-speed execution of traffic policies. Dedicated NP network processor guarantees high performance deep packet processing (optional). Full port wire-speed traffic forwarding.

Flexible traffic handling mechanism

Support 1->N, M->1, M->N path traffic replication aggregation; Support packet filtering such as: SMAC, DMAC, SIP, DIP, Sport, Dport, TTL, SYN, ACK, FIN, Get, Post and other packet characteristics, Ethernet type field and value, IP protocol number, TOS and other L2-L4 layer packet characteristics; IP fragmentation analysis and session reassembly are supported. IP fragmentation analysis and session reassembly are supported. IP fragmentation analysis and session reassembly are supported. Number of ACL entries up to 2K Support filtering rules black and white list.

Wire-speed DPI packet processing

Programmable chip based on hardware packet processing engine, can achieve deep packet inspection level protocol identification and action, and effectively eliminate the network bottleneck.

Complex transaction path tracking

The device provides packet transmission path analysis and animation display, which can realize path tracking in scenarios such as forwarding times, forwarding delay, forwarding types (routing, switching, firewall, load balancing, NAT), helping users to track and analyze the performance of complex business access paths. The traffic visualization diagnosis function of the VPP Programmable Processor Network Packet Broker / Network TAP Switch family performs automatic deep correlation analysis on the traffic data captured by the probe, and analyzes the data content from multiple dimensions such as time distribution, traffic size, session distribution, protocol distribution, active communication node (IP), carrying service, packet, network and security abnormal event analysis. It helps general network administrators understand the content of traffic data and helps network analysis experts sort out the clues of traffic data analysis, so as to achieve the effect of rapid fault location and deep problem analysis. The family members can be applied to the user's GE\10G\100G Ethernet link acquisition scenario, which has the characteristics of rich family members, diverse port density, wise-speed traffic strategy execution, strong scene adaptability, and easy management.

Load balancing

Support dynamic load balancing or customized load balancing; It supports hash load balancing calculation based on IP five-tuple. Support load balancing output port group members arbitrary binding.

Flexible port matching

Support custom input and output for all ports Members of the same port group are not limited by port types. Support arbitrary binding input and output port groups; Support port transceiver multiplexing, single fiber sending and receiving.

Hybrid capture deployment

Support port mirroring and spectrophotometric capture.

A friendly and interactive experience

It supports unified data collection, classification and distribution, which can effectively eliminate the monitoring blind spot, so that managers can monitor the whole network status in real time. It provides a fully graphical, multi-dimensional, consistent and friendly user interface. Provide complete equipment working status monitoring function; it is fully compatible with big data deep mining, cache acceleration system, signaling analysis system, behavior monitoring system, operator intelligent pipeline DPI system, cloud application analysis system, information push system and other application requirements.

Support more new business scenarios

With the upgrade of user service network, there are more new service scenarios, such as VxLAN, MPLS, heterogeneous encapsulation nesting, 3-layer VLAN nesting, appending hardware level timestamp, etc. It is difficult for traditional traffic control devices to meet such requirements. The VPP Programmable Processor Network Packet Broker / Network TAP Switch is easier to meet such challenges through programmable design of data plane.