PCAPX

Accelerating Packet Capture

PCAP Express Workbench

The PCAP Express Workbench is an open, standards-based platform for quickly and easily deploying monitoring applications.  It is one of the best integrated solutions for network traffic and security monitoring.  Perfect for experienced engineers looking for the power of hardware acceleration and the flexibility of open source applications .
 
PCAP Express Box

PCAP Express Workbench incorporates a custom libpcap extension that seamlessly enables multiple instances pcap-enabled applications to execute in parallel across cores, drastically scaling the throughput of network monitoring, analysis, and cyber security solutions to 10Gbps without code modifications.

Best-of-Breed, Monitoring Applications

 

Workbench   

PCAP Express Workbench includes a collection of best-of-breed monitoring applications designed for comprehensive security, performance, and traffic analysis. It comes standard with the following pre-configued open source packages including commercial-grade support:

  • Argus --  Audit Record Generation and Utilization System
  • Tcpdump -- Packet Capture and Analyzer
  • Wireshark -- Protocol Analyzer and Recorder

In addition, the libpcap development toolchain is certified to work with the following applications:

  • SiLK/YAF -- Flow-based Traffic Analysis Suite  
  • Bro -- Intrusion Detection System
  • Snort -- Intrusion Detection System

Powerful Hardware, Open Architecture

Based on an x86 Nehalem-class platform bundled with a 64-bit Linux operating system, PCAP Express Workbench accelerates traffic capture, recording, and analysis by transparently balancing computationally-intensive operations between a Napatech OEM adapter and multi-core processors.  Furthermore, because the distribution is derived from Debian/Linux, engineers benefit from easy access to a widely available repository of supporting software and documentation.

Key Features

  • Lossless packet capture and inspection at full line rate up to 10Gbps
  • Nanosecond time stamp resolution
  • Multi-core traffic splitting and load-balancing
  • Hardware-accelerated packet capture and processing
  • CaptureOS  (Debian/Linux-based operating system)
  • Libpcap development toolchain
  • Remote desktop access (via SSH)
  • Nehalem-based Xeon processors
  • 10Gbps (2-ports) or 1Gbps (4-ports) configuration
  • Optional hardware RAID with 10Gbps write-to-disk
  • Bundled with complete application source code (GPL-compliant)

Availability and Pricing

PCAP Express Workbench is ideally suited for solution providers, system integrators, and end-users familiar with the Linux command-line interface (CLI) and GNOME desktop .  For product data sheet, custom options, and additional information, please contact sales [@] pcapexpress.com.

Snort ® is a trademark of Sourcefire, Inc.
Netflow ® is a trademark of Cisco Systems, Inc.
Wireshark ® is a trademark of the Wireshark Foundation.
Links to SiLK and YAF does not imply product endorsement by the U.S. Government.