Mylinking™ Network Packet Broker(NPB) ML-NPB-2410L

24*10GE SFP+, Max 240Gbps, PCAP Packet Capturing

Short Description:

And Mylinking™ ML-NPB-2410L Network Packet Broker(NPB) is based on domestic chip, the whole process of Data Capturing Visibility, Data Unified Scheduling Management, Preprocessing and Redistribution of comprehensive products. It can realize the centralized collection and reception of link data of different network element locations and different exchange routing nodes. Through the built-in high-performance data analysis and processing engine of the device, the captured original data is accurately identified, analyzed, statistically summarized and labeled, and the original data is distributed and output. Further meet all kinds of analysis and monitoring equipment for Data Mining, Protocol Analysis, Signaling Analysis, Security Analysis, Risk Control and other required traffic.

Send email to us

Product Detail

Product Tags

1-Overviews

Mylinking™ Network Packet Broker (NPB) of ML-NPB-2410L, with 24*1G/10G SFP+ compatible interface, SFP+ interface;

● Support L2-L7 Protocol Filtering function

● Supports flexible Packet Encapsulation

● Supports Tunnel Termination, Packet Identification

● Supports for adding Timestamps to packets

● Supports MTU 18~16127 range customization

● Supports service ports Packets Capturing according to filtering rules

● Supports WEB Graphical Interface Configuration;

● Supports 240Gbps Traffic Processing Capability;

● Supports matching function of inner/outer tunnel, Inner layer tunnel Hash Load Balancing

● Supports Packet Slicing according to tuple, and the length of slicing reservation is 4/96/128/192/256/512 bytes;

The above characteristics guarantee the Linear Speed Processing Performance.

● A full Data Capturing Visibility device(24*1/10GE SFP+ Slots)

● A full Data Scheduling Management device(24*1GE/10GE duplex Rx/Tx processing)

● A full pre-processing and re-distribution device(bidirectional bandwidth 240Gbps)

● Supported collection & reception of link data from different network element locations

● Supported collection & reception of link data from different switch routing nodes

● Supported raw packet collected, identified, analyzed, statistically summarized and marked

● Supported to realize irrelevant upper packaging of Ethernet traffic forwarding, supported all kinds of Ethernet packaging protocols, and aslo 802.1q/q-in-q, IPX/SPX, MPLS, PPPO, ISL, GRE, PPTP etc. protocol packaging

● Supported raw packet output for monitoring equipment of BigData Analysis, Protocol Analysis, Signaling Analysis, Security Analysis, Risk Management and other required traffic.

● Supported real-time packet capture analysis, data source identification

2-Intelligent Traffic Processing Abilities

Pure Chinese Chip Plus Multicore CPU

240Gbps intelligent traffic processing capabilities

1GE/10GE Data Capturing

24*1GE/10GE SFP+ ports Rx/Tx duplex processing, up to 240Gbps Traffic Data Transceiver at same time, for network Data Capturing, simple Pre-processing

Data Replication

Packet replicated from 1 port to multiple N ports, or multiple N ports aggregated, then replicated to multiple M ports

Data Aggregation
Packet replicated from 1 port to multiple N ports, or multiple N ports aggregated, then replicated to multiple M ports

Data Distribution
Classified the incoming metdata accurately and discarded or forwarded different data services to multiple interface outputs according to white list, blacklist or user’s predefined rules.

Data Filtering
The incoming data stream can be dropped or forwarded by implementing whitelist or blacklist rules according to the packet characteristics. Support is based on input port, source/destination MAC address, VLAN ID, Ethernet type field, packet length or length range, layer 3 protocol type, source/destination IP address or address segment (outer layer) source, destination IP address or address segment (inner layer of tunnel such as GRE/VxLAN), TCP/UDP Source/destination port or port range, IP fragment label, IPv6 flow label, custom signature code (UDB) and other fields are considered to further meet the deployment requirements of various network security monitoring, security analysis, business analysis, operation and maintenance analysis and other traffic monitoring scenarios.

Load Balance

According to the MAC information, IP information, port number, protocol and other L2-L7 layer characteristics of the frame, the Hash algorithm and the weight division algorithm based on the session were used to ensure the session integrity of the data stream received by the bypass listening device, and the offload port group members could flexibily exit (link DOWN) or join (link UP) when the link state changed. The diversion group automatically redistributes the traffic to ensure the dynamic load balance of the port output traffic.
● Supports Hash-based homomorphic load balancing output: SIP, DIP, SIP + SP, DIP + DP, SIP + DIP, SIP + SP + DIP + DP+ protocols
● Supports global HASH factor
● Supports independent stream HASH factors
● Supports Round-Robin round-robin scheduling load balancing
● Supports symmetric HASH load balancing shunt output
● Supports sending the same source input traffic to multiple output port groups simultaneously (up to 32 groups supported)
● Supports multi-port input traffic to be aggregated and sent to multiple output port groups at the same time (up to 32 groups supported)

VLAN Tagged

VLAN Untagged

VLAN Replaced

Supported VLAN label stripping, VLAN replacement and VLAN label adding for one layer or two layers of original data packet, and it can implement traffic output policy according to user configuration.

Data Slicing
Supported policy-based slicing (64/96/128/192/256/512 bytes optional) of the raw data, and the traffic output policy can be implemented based on user configuration

Packet Protocol Identify

Supported automatically identify various kinds of tunnel protocol VxLAN/NVGRE/IPoverIP/MPLS/GRE, etc., It can be determined according to the user profile according to the tunnel flow output of inner or outer characteristics.
● It can recognize VLAN, QinQ, and MPLS label packets
● Can identify the inner and outer VLAN
● IPv4/IPv6 packets can be identified
● Can identify VxLAN, NVGRE, GRE, IPoverIP, GENEVE, MPLS tunnel packets
● IP fragmented packets can be identified

Tunnel Packet Termination
Supported tunnel packet termination function, which can configure ip address/mask on the traffic input port, and directly send the traffic that needs to be collected in the user's network to the device acquisition port through tunnel encapsulation methods such as GRE.

Time Stamping
Supported to synchronize the NTP server to correct the time and write the message into the packet in the form of a relative time tag with a timestamp mark at the end of the frame, with the accuracy of nanoseconds

Packet Capturing
Supported packet capture function, which can support business ports to capture packets according to filtering rules, and the captured data is in PCAP format. The captured data can be downloaded for analysis by third-party analysis tools.

Traffic Visibility
Supported the whole process of link data flow visibility from receiving and capturting, identification and processing, scheduling and management, output distribution can be realized. Through a friendly interactive interface, the invisible data signal is transformed into a visible, manageable and controllable entity by multi-vision and multi-latitude presentation of traffic composition structure, network traffic distribution, packet identification processing state, various traffic trends, and the relationship between traffic and time or business.

Single Fiber Input and Output

Supported 24 independent 10G Ethernet interfaces, and the TX/RX of each interface can perform single-fiber input/output multiplexing configuration. When the RX direction of a port is used as the optical splitting input, the TX of the same port can be used as the output after the traffic replication/aggregation/split strategy. It can improve the port utilization of equipment and save investment for users.

1+1 Redundant Power System(RPS)
Supported 1+1 Dual Redundant Power System. Dual power supply redundant power supply, AC 100~240V and DC 48V optional. Redundant power supply can ensure the longest time of link flashover free.

3-Mylinking™ Network Packet Broker Typical Application Structures

3.1 Mylinking™ Network Packet Broker Centralized Collection Replication/Aggregation Application(as following)

3.2 Mylinking™ Network Packet Broker Unified Schedule Application(as following)

3.3 Mylinking™ Network Packet Broker Data Slicing Application(as following)

3.4 Mylinking™ Network Packet Broker Data VLAN Tagged Application(as following)

3.5 Mylinking™ Network Packet Broker Hybrid Access Application for Network Flow Capturing/Replication/Aggregation (as following)

4-Specifications

ML-NPB-2410L Mylinking™ Network Packet Broker TAP/NPB Functional Parameters
Network Interface	10GE	24 * SFP+ Slots; Support 10GE/GE; SM/MM Fiber
Network Interface	Out-of-Band MGT Interface	1* 10/100/1000M Electrical Port
Deployment Mode	10G Optical Mode	Support 24 bidirectional 10GE link complete capturing
	10G Mirror Span Mode	Support up to 24 mirror traffic inputs
	Single Fiber Tx/Rx	Supported
	Traffic replication/aggregation/distribution	Supported
	Number of links Mirror for replication/aggregation	1->N Links traffic replication(N<24) N->1 Links traffic aggregation(N<24) G Group(M-> N Link) traffic replication and aggregation [G * (M + N) <24]
	Packets Filtering	Supports based on input port, source/destination MAC address, VLAN ID, Ethernet type field, packet length or length range, layer 3 protocol type, source/destination IP address or address segment (outer layer) source, destination IP address or address segment (inner layer of tunnel such as GRE/VxLAN), TCP/UDP Fields such as source/destination port or port range, IP fragment label, IPv6 flow label, custom signature code (UDB), etc.
	Packet Slicing	Supports Packet Slicing according to tuple, and the length of slicing reservation is 4/96/128/192/256/512 bytes.
	Time-stamping	Supports for adding Timestamps to packets
	Packet Identification	● Identifying VLAN, QinQ, MPLS label packets ● Identifying the inner layer, outer layer VLAN ● Identifying IPv4/IPv6 packets ● Identifying VxLAN, NVGRE, GRE, IPoverIP, GENEVE, MPLS tunnel packets ● Identifying IP fragmented packets
	Tunnel Packet Termination	Supports GRE Tunnel Termination
	VLAN Modification	Support VLAN Tag stripping (maximum 2 layers), VLAN replacement, and adding VLAN Tag
	Load Balance	Supported
	MTU	Supports 18~16127 range customization
	Packets Capturing	Supports service ports to capture packets according to filtering rules
	IP/WEB Network Management	Supported
	SNMP Network Management	Supported
	TELNET/SSH Network Management	Supported
	SYSLOG Protocol	Supported
	Performance	240Gbps
	Number of Rules	8000 rules
Electric (1+1 Redundant Power System-RPS)	Rated Supply Voltage	AC-100~240V/DC-48V [Optional]
	Rated Power Frequency	AC-50Hz/60Hz
	Rated Input Current	AC-3A / DC-10A
	Rated Functional Power	170W
Environment	Operating Temperature	0－50℃
	Storage Temperature	-20-70℃
	Operating Humidity	10%-95%, non-condensing
User Configuration	Console Configuration	RS232 Interface, 115200, 8, N, 1
User Configuration	Password Authentication	Supported
Rack Height	Rack space (U)	1U 440mm (Width)44mm (Hight)300mm (Depth)