Produkte > Virtual Taps
Virtual Taps ermöglichen eine 100% Sicht auf den Netzwerkverkehr Virtueller Maschinen (VMs)
innnerhalb virtueller EDV-Umgebungen und Clouds. Virtual Taps beinhalten Management und
Monitoring-Tools um Zugriff auf Ihre virtuellen Monitoring Datenverkehr zu erhalten.
Diese vielseitigen Software Devices bieten überdies die Möglichkeit den überwachten Netzwerkverkehr
in Encapsulated Tunneln an physische Probes weiterzuleiten - so, daß es möglich ist bereits existierende
Überwachungsgeräte und die bestehende Infrastruktur zum Analysieren der virtuellen Umgebungen auch weiterhin nutzen zu können.
- Erweitert den Monitoring Zugriffsmöglichkeiten in den inter-VM Netzwerk-Layer hinein
- Ermöglicht Monitoring für Security und Compliance in virtuellen Netzwerken
- Ermöglicht die Verwendung physischer Monitoring-Tools, Prozesse, und Abläufe im Zusammenspiel mit dem virtuellen Netzwerk
Passive monitoring of Inter-VM traffic in VMware ESX/ESXi hypervisor-based virtual computing stacks. Phantom Manager component provides Tap control, administration, and traffic visibility. The VMsafe-certified Phantom Monitor component installs in the hypervisor for total traffic visibility. Use with virtual or physical intrusion detection systems, protocol analyzers, layer 2 and 3 probes, and oth
Todays networks are virtualizing with explosive speed, raising complex challenges and demanding a new approach to security, management and compliance. Virtualization brings sweeping gains in scalability and efficiency, but also creates the severe threat of intrusion. Lack of visibility into the traffic flow between Virtual Machines (VMs) leaves your network vulnerable and uncontrollable, resulting in potential loss of productivity, customers, and revenue.
The Phantom Virtualization Tap Provides the Total Visibility You Need
Like a magnifying glass, the landmark Phantom Virtualization Tap exposes the true scope of your virtualized and physical infrastructure. You see every bit of traffic passing between VMs on hypervisor stacks, as well as between VMs residing on separate blades in the same chassis. It taps traffic between your VMs on a physical server and enables rigorous, Best Practices network management and control.
The Phantom Virtualization Tap integrates directly into the hypervisor kernel, enabling full access to the entire network stack without the performance penalty of running your vSwitch in promiscuous mode. That way, you dont lose important network-layer errors which may be cleaned off before sharing and become becoming invisible to other monitoring resources when those very errors are key to troubleshooting your issue.
Eliminate the Black Hole and Illuminate Your Network Data
The Phantom Virtualization Tap gives you a complete monitoring perspective. As virtualization expands, many instrumentation layer tools are developed for hypervisors and virtual machines. However when users cannot monitor both the virtual and physical aspects of an environment, you run the risk of a black holewhen the speed of virtualization outpaces your ability to control and protect your network. Thats why Net Optics supports total access capabilities and unrestricted monitoring by any tool of choice, whether virtual or physical.
The Phantom Virtualization Tap
Cost-Efficiently Meet Your Security and Compliance Needs
- Performs smart filtering of traffic of interest at the collection point
- Integrates kernel-level monitoring into the heart of your hypervisor and integrated with your virtual switching vendor of choice
- Enables monitoring and access control in dynamic and distributed virtual environments
- Eliminates the need for promiscuous mode switches, dedicated probes or counterintuitive shaping and routing.
The Phantom Virtualization Tap optimizes your investment in the physical tools you already ownpostponing or reducing the need to purchase expensive, dedicated new virtual tools. Requiring no changes and creating no single point of failure, this versatile Tap supports all best-of-breed hypervisors. It works not only in ESX environments (VMsafe Certified) and with internal VMware vSwitches, but also with the Cisco Systems Nexus 1000V virtual switch; the MS Hyper-V 2012, Xen, Oracle VM and KVM hypervisors.
Solve Your Compliance Challenges
To help you audit accurately and simplify compliance, the Phantom Virtualization Tap lets you nonintrusively monitor all traffic passing between VMs on hypervisor stacks. The Tap aggregates traffic from multiple VMs and performs smart filtering; it mirrors all traffic within a virtual switch and exports raw network data within a virtual host to monitoring tools or Intrusion Detection Systems (IDSs). This enables you to perform the needed analytics for compliance and reporting, management, and problem resolution. By enabling complete visibility into all data flowing on the network, the Phantom Virtualization Tap allows for immeasurably better control of the virtual environment and application performance.
Achieve Smooth Director Switch Integration
The Phantom Virtualization Tap is built to integrate with, and forward traffic to the Net Optics family of Director switches. Extending your options, this Tap is available in various bundles, as an add-on to existing Net Optics monitoring infrastructure, and as a software-only standalone solution.
Manage with Ease and Agility via the GUI-Based Indigo Pro Platform
The Phantom Virtualization Tap is managed by the Indigo Pro Phantom Manager, which ties smoothly into our Indigo Pro Central Management platform for enterprise-wide management of all access devices. Indigo Pro delivers a rich-featured view of your networks health, enabling you to configure at a click. Choose from among 120 informative graphs, while element management and a versatile dashboard let you collect and visualize traffic statistics from all of your Net Optics devices. If faults do occur, Indigo Pro collects and displays event messages and generates alerts. You gain accurate knowledge of patterns and conditions across the infrastructure, so you can act to resolve problems before they affect your availability, productivity and SLAs. Indigo Pro is ensures that you get the greatest value from your Net Optics investment.
Learn more about Indigo Pro
Rely on the Phantom Virtualization Tap to provide you with the 100 percent visibility thats key to safeguarding your network from growing threats, streamline management and achieve regulatory compliance.
Learn more about Indigo Pro
Doing Our Part
We are dedicated to ensuring user safety, and developing products that are increasingly environment friendly. All Net Optics products adhere to UL and CE safety certifications; FCC, VCCI, and C-Tick EMC certifications; and RoHS and WEEE environmental certifications.
Phantom DC Starter - Phantom Virtualization Tap software & license: 2 Indigo Pro + 25 Monitors perpetual license
Phantom DC Standard - Phantom Virtualization Tap software & license: 5 Indigo Pro + 50 Monitors perpetual license
Phantom DC Extreme - Phantom Virtualization Tap software & license: Unlimited number of Indigo Pro + 100 Monitors perpetual license
Phantom Virtualization Tap, 1 Indigo Pro + 1 Monitor, One Year License
VMware vSphere ESX/ESXi Server 4.X/5.X; Microsoft Hyper-V 8.X; Citrix Xen Server 5.6.X; Redhat KVM 2.6.32, Oracle VM 3.0
Indigo Pro for Phantom Virtualization Taps VM: Management and reporting engine that runs in a VM.
Phantom Monitor: A Phantom Monitor is installed in each hypervisor. The Phantom monitor has two components: a Phantom Monitor Control VM and a Phantom Monitor Module, which is a hypervisor kernel.
The Indigo Pro for Phantom Virtualization Taps VM virtual appliance must be accessible via HTTPS to access the application interface.
DNS and NTP services should be available for all components.
TCP 443 and 8443 must be available between the Indigo Pro for Phantom Virtualization Taps and Phantom Monitor Control VMs.
TCP 902 must be available between Indigo Pro for Phantom Virtualization Taps and the Hypervisor hosts.
Disk Storage: 10 GB free space (minimum)
Web Browser: Internet Explorer 6 or later, Firefox 2 or later, Safari 4.x or later
Virtual Appliance System Requirements:
Compressed size of Virtual Appliances:
Indigo Pro for Phantom Virtualization Taps VM: Approximately 1.2 GB
Phantom Monitor Control VM:
Approximately 1.3 GB
Uncompressed size of system:
Indigo Pro for Phantom Virtualization Taps VM: 16.0 GB
Phantom Monitor Control VM: 4.0 GB
Indigo Pro for Phantom Virtualization Taps VM: 256 MB (No more than 2GB)
Phantom Monitor Control VM: 385 MB
(No more than 385 MB)
PT-DC-25, Phantom DC Starter
Phantom Tap software and license:
2 Indigo Pro, + 25 Monitors perpetual license
PT-DC-50, Phantom DC Standard
Phantom Tap software and license:
5 Indigo Pro, + 50 Monitors perpetual license
PT-DC-100, Phantom DC Extreme
Phantom Tap software and license: Unlimited number of Indigo Pro + 100 Monitors perpetual license
PT-01-Custom, Phantom Virtualization Tap
1 Indigo Pro, + 1 Monitor, One Year License
Passive, Secure Technology
Ease of Use
- 100 percent visibility of traffic between Virtual Machines (VMs)
No interference with the data stream or VMs
No modifications needed in VMs
Installs in hypervisor kernel for full traffic access
Generates Layer 2 and 3 statistics (packet count, utilization, etc.)
TapFlow multi-layer L2-4 filtering engine
Replicates Inter-VM traffic to virtual and physical monitoring tools of choice
Sends replicated traffic out physical NICs in encapsulation tunnels
One Phantom Virtualization Tap monitors traffic from multiple VMs in a physical server (one Phantom Virtualization Tap is installed on each hypervisor, that is, in each physical server)
- Follows VMs as they move (vMotion) among physical servers
Rich, easy-to-use graphical user interface (GUI)
Indigo Pro for Phantom Manager console (included software component) manages multiple Phantom Virtualization Taps and network traffic
Compatible with all major manufacturers´ monitoring devices, including protocol analyzers, probes, data loss prevention, database activity monitoring, Web application firewall, and intrusion detection and prevention systems
Data centers are virtualizing at breakneck speed, but the monitoring infrastructure often struggles to match
that pace. Now, Net Optics´ Phantom Solution uses the Phantom HD appliance to ease the virtualization
transition by converging the physical and virtual monitoring infrastructures.
Phantom for Virtual Visibility
The Phantom Solution for monitoring in a virtualized computing environment consists of four key components:
The Phantom Virtual Tap installs in the hypervisor of each physical server to provide access to all traffic in the server, including previously invisible inter-VM traffic.
The Phantom HD is a high-throughput tunneling appliance that decapsulates traffic from numerous Phantom Virtual Taps, aggregates the resulting raw traffic, and sends it at 10 Gbps for
inspection by instrumentation layer tools. Phantom HD also encapsulates raw traffic from virtual or physical devices and sends it to remote locations for processing at 10 Gbps.
The Director data monitoring switch is an optional component that can manage the Phantom HD, aggregate raw traffic from the Phantom HD with traffic from physically monitored sources, and filter and switch it to monitoring tools.
Physical monitoring tools are the final component of the Phantom Solution for performance, security, and compliance monitoring in the virtualized environment.
The Phantom HD terminates tunnelled traffic from Phantom Virtual Taps or other sources. It decapsulates the traffic and defragments those packets that occasionally become fragmented during tunnel encapsulation. The Phantom HD then lays out the resulting raw traffic stream on a monitoring port that is connected to a switch such as Net Optics Director, or to another monitoring tool of choice.
Raw Traffic Encapsulation
The Phantom HD receives raw traffic from either virtual or physical devices, encapsulates it, and tunnels it over to the remote instrumentation layer for inspection. The Phantom HD supports 10 Gbps continuous throughput. This is ample for handling traffic of interest from many virtual servers on multiple hypervisors and many ESXs. Fiber SR 10 Gigabit ports provide the input for the tunneled traffic and the output for the raw traffic.
The compact, 1U Phantom HD is easy to add to your data center and simple to deploy. It can be conveniently managed by a Director CLI or by Phantom HDs own CLI. Just plug it in, configure the IP addresses, and decapsulation begins.
Phantom HD Appliance, 10G Throughput, Encapsulation
Phantom HD Appliance, 10G Throughput, Decapsulation
Phantom HD Appliance, 20G Throughput, Encapsulation
Phantom HD Appliance, 10G Throughput, Encapsulation, 10G Throughput, Decapsulation
Phantom HD Appliance, 20G Throughput, Decapsulation
10 Gigabit SR Base SFP+ Transceiver w/cable 62,5 850nm
10 Gigabit SR Base SFP+ Transceiver w/cable 50µm 850nm
10 Gigabit LR Base SFP+ Transceiver w/cable 8,5µm, 1310nm
10 Gigabit ER Base SFP+ Transceiver w/cable 8.5µm, 1550nm
Purpose: Decapsulates tunneled traffic and sends raw traffic to monitoring switch or tool
Tunneling protocol: GRE
Fragmentation: Automatic defragmentation
Throughput: 10 Gbps
Device management: Direct (SSH), or through Net Optics Director (requires software version 5.x)
Operating Temperature: 0°C to 35°C
Storage Temperature: -10°C to 70°C
Relative Humidity: 10% min, 95% max, non-condensing
Dimensions: 1.75" high x 23.5" deep x 19" wide
Mounting: 19" rack mount (1U)
Weight: 26 lbs (11.8kg)
Tunnel in: (1) 10 Gbps SR LC-type
Data out: (1) 10 Gbps SR LC-type
Management: 100 Mbps RJ-45
Console: RS-232 serial DB9
Power: 100-240VAC, 47-63Hz 650W PFC
Redundancy: Dual modules
Maintenance: Power supplies are hot-swappable
Power, disk activity, network 1 activity, network 2 activity, over-temperature warning
FCC, CE, VCCI, and C-Tick certified
Fully RoHS and WEEE compliant
Net Optics Director, software 5.x
Net Optics Phantom Virtual Tap or other source of tunneled traffic
All products require an advanced replacement service plan. Service plans with 1 to 5 years coverage are available.
PT-HD-10-E : Phantom HD Appliance, 10G Throughput, Encapsulation
PT-HD-10-D : Phantom HD Appliance, 10G Throughput, Decapsulation
PT-HD-20-EE : Phantom HD Appliance, 20G Throughput, Encapsulation
PT-HD-20-DE : Phantom HD Appliance, 10G Throughput, Encapsulation, 10G Throughput, Decapsulation
PT-HD-20-DD : Phantom HD Appliance, 20G Throughput, Decapsulation
SFP Transceiver Module Kits *:
SFP+KT-50SR Module Kit, 10G, Multimode, Fiber, 50 µm, w/Cable
SFP+KT-SR Module Kit, 10G, Multimode, Fiber, w/Cable
SFP+KT-LR Module Kit, 10G, Singlemode, Fiber, w/Cable
* One SFP+ transceiver module is required in Director to connect to Phantom HD
- Supports monitoring of all virtualized data center traffic with Net Optics Phantom Virtual Tap at high-throughput
- Delivers overall capacity of 20 Gbps in 1U rack-mount appliance
- Encapsulates or decapsulates tunneled traffic at 10 Gbps
- Initiates and terminates encapsulation tunnels
- Encapsulates and tunnels raw traffic to remote monitoring switch or tool at 10 Gbps
- Handles fragmentation and defragmentation of tunneled packets