Presentation is loading. Please wait.

Presentation is loading. Please wait.

Net Optics, Inc. - Proprietary Director Pro™ Overview February 2010.

Published bySimon Dalton Modified over 9 years ago

Similar presentations

Presentation on theme: "Net Optics, Inc. - Proprietary Director Pro™ Overview February 2010."— Presentation transcript:

1 Net Optics, Inc. - Proprietary Director Pro™ Overview February 2010

2 Net Optics, Inc. - Proprietary It’s Like Director It’s Like Director Load balancing Load balancing Deep packet inspection Deep packet inspection Extended traffic statistics Extended traffic statistics Extended filtering Extended filtering Contents

3 Net Optics, Inc. - Proprietary It’s Like Director™ Aggregation, regeneration, matrix switching, layer 2-4 filtering 10 SFP monitor ports 2 DNM slots (same DNMs) 2 XFP 10G ports on the front CLI

4 Net Optics, Inc. - Proprietary Dynamic load balancing Deep packet inspection (DPI) Extended filtering Extended traffic statistics RJ45 RS232 console port It’s Better Than Director! DIR-6400P (three 10G ports) DIR-3400P (no 10G ports) But… Only one 10G stacking port No USB No Web Manager (yet)

5 Load Balancing

6 Net Optics, Inc. - Proprietary Load Balancing is Important! A single tool can’t keep up with Web traffic VoIP Streaming Video 1G tools on a 10G link Customers need to use multiple Forensic (traffic) recorders IPS appliances VoIP quality and billing systems Customers are filling this need with More expensive solutions (Application Delivery Controller) Competitors that promote Load Balancing THEY SHOULD BE USING DIRECTOR PRO!!!!

7 Net Optics, Inc. - Proprietary Load Balancing Definition Load Balancing is distributing a workload among multiple devices in an even manner Why? A single device cannot do all the work itself

8 Net Optics, Inc. - Proprietary Static Load Balancing Filter on IP addresses to distribute traffic –Even / Odd OR xxxxxxx00 --> m.1 (IP address mask = 000000011) xxxxxxx01 --> m.2 xxxxxxx10 --> m.3 xxxxxxx11 --> m.4 xF0, x34, x1CxE3, x5F, x17 x42, x46, xDE x71, x49, xA5

9 Net Optics, Inc. - Proprietary Static Load Balancing Flexibility Load balance by Source and destination IP address/subnet Source and destination TCP/UDP port Source and destination MAC address VLAN SSRC ID in RTP streaming media traffic, using User-Definable Filter (UDF) Director and Director Pro can run multiple static load balancers.

10 Net Optics, Inc. - Proprietary Flows Definition A flow is a conversation between two devices Usually means the same IP address pair for source and destination One flow

11 Net Optics, Inc. - Proprietary Static Load Balancing (Filter-based) Balance Quality 00 01 10 11 Packet Round-Robin Less Even Balance (depending on traffic) More Even Balance (depending on traffic)

12 Net Optics, Inc. - Proprietary Dynamically sends each new flow to the least utilized output Flow coherent AND even balance (independent of traffic characteristics) Director Pro – only solution in the market! Dynamic Load Balancing

13 Net Optics, Inc. - Proprietary The Pro Engine DNM 1DNM 2 Monitor Pro engine card Net Optics custom chip Dynamic load balancing and DPI implemented in Pro engine daughter card Net Optics custom, proprietary IC

14 Net Optics, Inc. - Proprietary Dynamic Load Balancing Features One dynamic load balancer (DLB) per Director Pro Traffic into the DLB can be aggregated from multiple ports and filtered, up to 10 Gbps (after filtering) The DLB can balance the load to 1 to 32 tools (monitor ports) Four balancing modes: Flow-based, by conversation (IP address pair, a 2-tuple) Flow-based, by source address Flow-based, by destination address Packet round-robin (not flow coherent) Spare failover port Overflow mode

15 Net Optics, Inc. - Proprietary Spare Port Add a spare port to the load balance set Attach a hot-spare tool If any active port loses link, its traffic is switched to the spare port X Normal OperationFailover Hot Spare

16 Net Optics, Inc. - Proprietary Overflow Mode Start with “n” tools in the load balance set Add another tool when the current set reaches a utilization threshold, until all outputs are in use Can be used with a spare failover port Third tool switched in when first two tools passed the threshold. Threshold 100%

17 Deep Packet Inspection

18 Net Optics, Inc. - Proprietary Deep Packet Inspection (DPI) CRCPayload Layer 7 header - HTTP - FTP - SMTP (e-mail) Layer 6 header - Presentation layer Layer 5 header - Session layer Layer 4 header - TCP - UDP (Ports) Layer 3 header - IP (IP addresses, protocol) Layer 2 header – Ethernet (MAC addresses, VLAN, EtherType) L2-L4 Filtering DPI Ethernet Packet Structure

19 Net Optics, Inc. - Proprietary DPI Applications Use DPI to: Protect proprietary information – find “Confidential” Locate e-mail to “John Smith” Identify VoIP to “555-1212” Track credit cart number “1234 56 7890” Measure “Oracle” application traffic …and much more!

20 Net Optics, Inc. - Proprietary Pattern Matching John Smith Find “John” followed by “Smith” (unanchored search) Excel Find “Excel” at location “x” (anchored search) Byte offset x

21 Net Optics, Inc. - Proprietary DPI Details A pattern can have 1 or 2 strings Each string can be ASCII or hex Case sensitive or insensitive (if ASCII) Anchored or unanchored (different offset for each string, each pattern) Up to 64 ASCII characters or 128 hex digits Character-wise masking (e.g., “John?Sm?th”, “FF0?1A”) Pro engine supports up to 16 patterns (i.e. 16 filters) Filter outputs can go to 10 destinations A destination can be multiple regenerated monitor ports Send multiple filters to the same destination for logical OR Send filter to no destination for “action=drop” Send filter to no destination just to measure the traffic

22 Extended Traffic Statistics

23 Net Optics, Inc. - Proprietary Pro Engine Statistics The Pro engine counts packets and bytes: Matching each of the 16 DPI filters Find out how much e-mail “John Smith” is receiving Measure HTTP and SNMP traffic Sent to each dynamic load balancer output Easily verify load balancing quality IPv4, IPv6, ARP, TCP, UDP, ICMP Total in and out of the Pro engine Use CLI command pro-engine show content=“stats”

24 Extended Filtering

25 Net Optics, Inc. - Proprietary Filtering Enhancements Director Pro extends Director filtering: Exact ranges for IP addresses, Layer 4 ports, and VLANs Speeds trouble-shooting by eliminating extraneous traffic Filter on EtherType Select non-IP traffic such as AppleTalk, ARP, FCoE Filter on first MPLS label MPLS enables Ethernet to carry traffic similarly to ATM, SONET, and frame relay for high-performance telecom networks MPLS label at “Layer 2.5”

26 Net Optics, Inc. - Proprietary It’s Like Director – turbo-charged! It’s Like Director – turbo-charged! Load balancing – Static and Dynamic Load balancing – Static and Dynamic Deep packet inspection – Pattern matching in payload Deep packet inspection – Pattern matching in payload Extended traffic statistics Extended traffic statistics Extended filtering Extended filtering Review

27 Net Optics, Inc. - Proprietary Net Optics, Inc. www.netoptics.com info @netoptics.com (408) 737-7777 Thank You

Download ppt "Net Optics, Inc. - Proprietary Director Pro™ Overview February 2010."

Similar presentations

SHARKFEST '09 | Stanford University | June 15–18, 2009 The Reality of 10G Analysis Presented by: Network Critical Wednesday, June 17 th, 2009 1:30 pm –

SHARKFEST '09 | Stanford University | June 15–18, 2009 The Reality of 10G Analysis Presented by: Network Critical Wednesday, June 17 th, :30 pm –
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.
Delivery and Forwarding of

Delivery and Forwarding of
OpenFlow overview Joint Techs Baton Rouge. Classic Ethernet Originally a true broadcast medium Each end-system network interface card (NIC) received every.

OpenFlow overview Joint Techs Baton Rouge. Classic Ethernet Originally a true broadcast medium Each end-system network interface card (NIC) received every.
Cisco 2 - Routers Perrine. J Page 14/30/2015 Chapter 10 TCP/IP Protocol Suite The function of the TCP/IP protocol stack is to transfer information from.

Cisco 2 - Routers Perrine. J Page 14/30/2015 Chapter 10 TCP/IP Protocol Suite The function of the TCP/IP protocol stack is to transfer information from.
IST 201 Chapter 9. TCP/IP Model Application Transport Internet Network Access.

IST 201 Chapter 9. TCP/IP Model Application Transport Internet Network Access.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—4-1 Implementing Inter-VLAN Routing Deploying Multilayer Switching with Cisco Express Forwarding.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—4-1 Implementing Inter-VLAN Routing Deploying Multilayer Switching with Cisco Express Forwarding.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing & Switching.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Communicating over the Network Network Fundamentals – Chapter 2.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Communicating over the Network Network Fundamentals – Chapter 2.
William Stallings Data and Computer Communications 7 th Edition (Selected slides used for lectures at Bina Nusantara University) Internetworking.

William Stallings Data and Computer Communications 7 th Edition (Selected slides used for lectures at Bina Nusantara University) Internetworking.
Snort - an network intrusion prevention and detection system Student: Yue Jiang Professor: Dr. Bojan Cukic CS665 class presentation.

Snort - an network intrusion prevention and detection system Student: Yue Jiang Professor: Dr. Bojan Cukic CS665 class presentation.
Introduction. 2 What Is SmartFlow? SmartFlow is the first application to test QoS and analyze the performance and behavior of the new breed of policy-based.

Introduction. 2 What Is SmartFlow? SmartFlow is the first application to test QoS and analyze the performance and behavior of the new breed of policy-based.
Review on Networking Technologies Linda Wu (CMPT 471 2003-3)

Review on Networking Technologies Linda Wu (CMPT )
CECS 474 Computer Network Interoperability Tracy Bradley Maples, Ph.D. Computer Engineering & Computer Science Cal ifornia State University, Long Beach.

CECS 474 Computer Network Interoperability Tracy Bradley Maples, Ph.D. Computer Engineering & Computer Science Cal ifornia State University, Long Beach.
1 TCP/IP architecture A set of protocols allowing communication across diverse networks Out of ARPANET Emphasize on robustness regarding to failure Emphasize.

1 TCP/IP architecture A set of protocols allowing communication across diverse networks Out of ARPANET Emphasize on robustness regarding to failure Emphasize.
Director™ Data Monitoring Switch

Director™ Data Monitoring Switch
Module 1: Reviewing the Suite of TCP/IP Protocols.

Module 1: Reviewing the Suite of TCP/IP Protocols.
Data Communications and Networks

Data Communications and Networks
Net Optics Confidential and Proprietary 1 iLink Agg.

Net Optics Confidential and Proprietary 1 iLink Agg.
OSI Model Routing Connection-oriented/Connectionless Network Services.

OSI Model Routing Connection-oriented/Connectionless Network Services.

Similar presentations

Ads by Google