DataPlus markets the latest products to capture enterprise network traffic for compliance requirements and security incident response.  Our PASSIVE traffic probes, distributed switching, and recording tools offer unique features for unmatched forensics and deep packet data mining.  Your organization may already use some legacy technologies (Niksun, NetOptics, NetWitness, NetScout / Sniffer, Gigamon Systems, etc.), but we offer capabilities, complete systems, and features that are just being released to the market.  With our products you can mirror every byte of traffic in your network without loosing packets then capture and manage large volumes of packets for faster analysis, packet slicing, and DPI troubleshooting.  Please consult us for the latest information in the following product areas:

Ø       Span Port Replicators and Distributed Taps / Aggregators

Ø      Switches for precise and powerful, but easy filtering and load-balancing

Ø      Switches with automation features to integrate tools and respond to your specific network

Ø      Forensic Recorders with proprietary software to capture all the packets even at 10 Gig.

Ø      Long-term packet capture (30 days or more) with fast granular data mining, payload tear-down and reconstruction necessary for quick incident responding

Ø      Application Centric Delivery Assurance for enhanced network management needed for today’s hyper-distributed application architectures

Typical Legacy Taps and Replicators:

Switching of Mirrored Traffic for maximum capture and monitoring efficiency:

Options

• High Density with Redundant Power
• Fully Integrated GUI
• Dynamic Filtering and Aggregation (beyond legacy approach)
• Automation Features to lessen routing tasks and respond to network alerts immediately.
• Shared user information sources
• Copper 100/1000 Variants
• Fiber 1 Gig and 10 Gig Variants
• Session Aware Load-Balancing
• Security Access Control Using Groups
• Statistics Charting

Long-Term Traffic (Packet) Capture:

What Is Network Forensics?

Do you have tools in place to record 100% of your traffic and replay or reconstruct it whenever you want? Active Network Forensics makes all network data flows instantly visible and replayable, enabling administrators to detect the full source and scope of any network security event and protect the network from further attack. Combining high-speed data capture, indexed storage, and comprehensive analysis tools, active network forensics is like putting a security camera on your network.

Traditionally, organizations have focused on prevention; however prevention of security breaches with today’s tools is becoming nearly impossible. Because these tools cannot protect against the next new threat, swift incident response and remediation are key. A comprehensive network forensics solution provides the evidence to uncover the full source and scope and take action, minimizing the time to resolution, saving valuable IT resources, and protecting from future risk. 

Why Network Forensics?

No company, large or small, is immune to the threats that saturate today’s complex network infrastructures. Network Forensics offers:

• Evidence to uncover the full source and scope of an attack and take action
• The fastest time to resolution, saves valuable IT resources, and protects from future risk
• Simplified monitoring, reporting, analysis, and remediation time
• Validation of fixes / patches installed after a breach

·  The Long-Term Capture Recorders from Solera Networks are superior to other similar products because Solera offers a patented Proprietary Software design proven to capture at 10 Gig speeds without packet loss.

·  Solera Networks enables organizations to easily record, search, analyze, and replay an unabridged record of network traffic.

·  A dedicated Solera Networks Recorder provides “Legal Defensibility” when administrative security features satisfy Lawful Intercept requirements.

·  Other Long-term capture add-ons to “Sniffers” and similar performance tools may not keep up with more demanding speeds.

DS 1160

The Solera DS 1160 is a 1U network forensics appliance designed to work on its own in smaller environments or in conjunction with any other Solera DS appliance. With onboard storage capacity of 3 TB and four 1 Gb capture ports, it is a perfect fit for smaller companies or remote satellite offices that need the security, tracking, and management of a dedicated network forensics appliance.

The Solera DS 1160 uses the patented Solera Networks DeepSee Forensics Suite, which allows both seasoned security professionals and business executives to analyze all network data traffic through reports, searches, and complete Web and IM traffic reconstruction.

The Solera DS 1160 includes an open web services API along with PCAP and network playback ability, which facilitate integrations with leading network security providers such as ArcSight™, Palo Alto Networks™ and SourceFire™ and many others.

DS 5160

The DS 5160 is the high-performance network forensics solution for organizations that demand the performance of a 10 Gigabit network interface and large storage capacity of 16 TB. Solera Networks offers the only network forensics appliance available that can sustain total packet capture and indexing at the speeds of today's fastest enterprise networks.

The Solera DS 5160 appliance creates a complete indexed and searchable record of network traffic (header and payload) and allows analysis through reports, folder-based filtering, search and network traffic reconstruction (including Web pages and IM conversations), using the included DeepSee Forensics Suite. This combination of detailed analysis significantly reduces incident response time and provides complete situational awareness.

The Solera DS 5160 includes an open REST-based web services API along with PCAP and network playback ability. This facilitates easy integrations with leading network security providers such as ArcSight™, Palo Alto Networks™, SourceFire™, and many other security solutions.

Application Delivery Assurance:  (“Applications are the business”)

IT architectures are moving away from the typical Client-Server model to hyper-distributed application environments.  These modern architectures include Virtualization, Web Services, SaaS, vast databases, increased storage devices, even multiple data centers where poor network performance can reduce uptime and efficiency.

The next-generation Application-and Network-Management Solution is here

An Application Delivery Assurance appliance from ExtraHop brings immense benefits to IT organizations enabling troubleshooting network and application issues in real-time.  It constantly monitors metadata of captured traffic and brings Layer 7 analysis capability addressing some of the shortcomings found in existing generation application-and network-management tools limited to L4, Transport Layer information.  ExtraHop distinguishes between network problems and application problems quickly; a task that legacy “sniffer” like products with large add-on storage becomes arduous.  ExtraHop is ideal for storage arrays and increased network storage deployment facing modern IT organizations.

Visibility ExtraHop offers:  Network L2-L4, Network L7, Simple TCP Metrics, Advanced TCP Metrics, Detailed HTTP Tx & Errors, Database Tx & Errors, and Storage Tx & Errors.  No other single product solutions offers all this visibility.

Alerting ExtraHop: Alerts on L2-L4 Metrics and Alerts on L7 Metrics…others do one or the other.

Scalability ExtraHop offers Real-Time Analysis even at 10 Gig throughput.

Deployment  ExtraHop installs in 15 minutes and requires no agents and no configuration.