Купить / Заказать / Узнать цену

P10 (Security Appliance)

High Performance Traffic Inspection, Monitoring, and Capture at 10 Gbps

The Force10 P-Series 10 Gigabit inspection appliance is the first to deliver comprehensive deep packet inspection for line-rate 10 Gigabit per second applications. Based on patented Dynamic Parallel Inspection (DPI) technology, the P-Series uses an innovative, new processing architecture to simultaneously apply thousands of rules to each packet. Through the use of an FPGA-based rule engine, the P-Series can also dynamically reprogram hardware rules to deliver predictable performance and total signature flexibility under all traffic conditions.

Using an open framework, the P-Series supports Open Source and customizable network monitoring applications, enabling users to specify capture and filtering policies from public domain signatures, standard network monitoring libraries, or user-defined custom rule bases.

Key P-Series Applications

• High speed programmable network probe delivers inspection and flexible capture rules for lawfully authorized electronic surveillance and CALEA applications
• 10 Gigabit stateful filtering applications
• Pre-processing and filtering capabilities to scale existing solutions to 10 Gigabit performance in the core or at the WAN edge
• Open application program interface for creating custom monitoring, packet capture, and network security applications

Key P-Series Features

• Line-rate 10 Gbps deep packet inspection with support for jumbo frames
• Predictable performance regardless of traffic conditions or number of rules
• Support for both active inline or passive monitor/capture deployments
• Dynamically write rules directly into hardware for greater flexibility in responding to malicious traffic

Performance

The P-Series runs at full line-rate for 10 GbE network links with full deep-packet inspection and stateful signatures/policies enabled.

Predictable Performance

As a pure hardware-based inspection system, the P-Series is inherently 100% predictable in how operations are performed and always compiles a rule base that runs at line-rate. This leads to identical performance, throughput, and latency under any traffic load, and with any number of rules applied.

Manageability

The P-Series is managed with a simple text-based rule management screen that enables users to:

• Start and stop the interface; turn each rule on and off
• Manage runtime parameters such as packet truncation, flow length, and timeout
• Set capture/ignore and block/forward policies for each rule

P-Series Specifications

• Interfaces
• Two line-rate 10 GbE XFP sensing ports Two line-rate GbE SFP mirroring ports

• Inspection Throughput
• 20 Gbps from 64 Byte to 9,000+ byte frames per system

• Inspection Rate
• 14,880,952 pps per port

• Maximum Latency
• 2 microseconds

• Number of Flows
• 8,000,000 per system

• Capture Rate
• 1,000,000 pps per system

• Full Header, Payload Inspection
• IPv4

• Power
• 100 - 240 VAC

• Management
• 2 10/100Base-T management ports
  1 RJ-45 console port

• Height
• 1 Rack Unit