1. Inspired By
Innovation
GENBAND’s
Deep Packet Inspection
2. EXL Technologies
Is ..
A System integrator and Value-added reseller,
Established 2004 in Egypt.
Clients
Mobile Operators, ISPs, Banking and government
sector.
Partner for
GENBAND, and other International Vendors.
Support
Dedicated support engineers to be available to give
assistance moreover they have a working knowledge
and solid experiences for faster resolutions to issues.
3. GENBAND
Is ..
#1 supplier in the global service
provider VoIP market
Specialties
Unified Communication, VOIP,
Soft switch, Media Gateway,
Security, Session Border Control,
& DPI.
GENBAND is No. 1 VOIP Supplier
Between All Vendors in 2Q11.
5. What is DPI ?
Shallow packet inspection examines header information
Deep packet inspection examines dataflow including packet headers and payloads
Header includes:
• Connection Payload includes:
information • Content
• Connection • Application signature
state over several packets
DPI Fundamental infrastructure to add intelligence to Operator networks
DPI Is able to
• Identify applications on a per user and device basis
• Uses a combination of methods to identify and classify applications and protocols. Accuracy
increases when combinations of methods are used.
8. DPI P-Series Family
P20
P20 P80
P80
20Gbps throughput
20Gbps throughput 80Gbps throughput
80Gbps throughput
5M concurrent flows
5M concurrent flows (full chassis)
(full chassis)
40M concurrent flows
40M concurrent flows
P320
P320
100Gbps throughput
100Gbps throughput
120M concurrent flows P50
P50
120M concurrent flows 50Gbps throughput
50Gbps throughput
2 RU
P320 is an Industry-Leading High 2 RU
20M concurrent flows
Capacity DPI Solution. 20M concurrent flows
Product P1 P2 P10 P20 P80
Form Factor 1RU 2RU 2RU 5RU 12RU
Throughput 200Mbps 2Gbps < 20Gbps 20Gbps 80Gbps
Users * 2K 100K 500K 2M 5M
Concurrent Flows 80K 1M 4M 5M 40M
10/100/1000BT GE 10/100/1000BT GE 10/100/1000BT GE
Interface types 10/100/1000BT 10/100/1000BT
& 10GE & 10GE & 10GE
* note: number of users is based on traffic assumptions, latent users, and network size.
9. TPM Solutions
Mass
Mass
Real-time User
Real-time User Personalization
Personalization
Service
Service Interaction
Interaction
Traffic
Traffic Creation
Creation Dynamic
Business
Business Control
Control Service Offers
Bill Shock
Intelligence
Intelligence Avoidance
Tiered
Congestion Services Blended
Real-time Avoidance Services
User Service
Monitoring App, Time & Upgrades
Detection and Location-
Advertisement
Historical Mitigation based
Bandwidth Activation
Analysis
Pre-Purchased Boost
Selective Services
Application Diversion
Reporting
Network Operations User Services
10. What DPI Can DO ?
User Application Anomaly
Awareness Awareness Detection
18. Yoigo DPI Solution
What is the offer?
– Fastest growing operator in Spain; Owns
3G network, roams with 2G partners, Pre-
paid mobile broadband service.
– Losing money on roaming charges
– Needed visibility to roaming subscribers
How we won
• Unique service offering: Traffic shaping on roaming subscribers (for
CAPEX control); EU-mandated roaming usage notification for outbound
roaming subscribers
• Powerful analytics
• LiveView provided significant visibility to the operators
18
19. CAN DO More ..
Why do some Internet providers use deep
packet inspection devices?
22. DPI Market
Strong growth in Mobile
and Fixed markets driven
by new deployments and
expansions
DPI Market
$1,600
$1,400
$1,200
$1,000 CALA
$800 APAC
EMEA
M
$600
n
o
s
l
i
NA
$400
$200
$0
CY08 CY09 CY10 CY11 CY12 CY13
Link infonetics: http://www.infonetics.com/pr/2012/4Q11-Service-Provider-VoIP-and-IMS-Market-Highlights.asp
Stateful is limited inspection that can only block on ports, No Data Inspection
Edges In Evolved DPI - At the bare minimum, the system can pay for itself if it’s used to provide the data necessary to perform traffic shaping – prioritization, QoS/QoE, and bandwidth limitation. The biggest value , however, should come with being able to identify traffic and then create services that charge according to usage. Connection flow analysis to more accurately identify known applications, services and protocols Includes the ability to understand the protocol behavior and detect presence of additional child connections/flow Key Benefits: Very fast time-to-market for new or updated signatures. Analyzes traffic throughout flow, not just first few packets. Extracts properties of each flow (eg URL, username, etc) Can “Associate” related traffic flows, eg SIP and SIP RTP (control and media streams) Calculate connection state (Download, interactive, CBR)
These Functions Are enabled in P-Series DPI. There are plenty of great reasons for your ISP to do this on your behalf: Deep packet inspection helps your ISP block the spread of computer viruses, identify illegal downloads, and prioritize the data transmitted by bandwidth-heavy applications like video chat and VoIP applications to alleviate network congestion and improve your service. Capex : Control peaks that cause network congestion and upgrades Postpone investments in network upgrades and benefit cost decrease of new technology Opex: Postpone bandwidth upgrades Automate and provide input to helpdesk/support Increase customer satisfaction : Actively and proactively manage network congestion to provide a good quality of experience (QoE) OTT applications analysis increase ARPU and customer adoptaion : Tiered service offers, creation of new services - Time-based, application-based service offers closely tied to user habits Added services - premium gaming , ad insertion
These Functions Are enabled in P-SubscriberManager DPI.
These Functions Are enabled in P-LiveView DPI.
- The total volume of traffic to the mobile devices is less than 10% of the overall streaming volume, but still significant as a contributor to network usage. - Sunday seems to have been a day where consumers not only watched the Olympic broadcasts, but also tested the streaming capabilities, at least across the Procera network footprint. - It is interesting to know that a small percentage of the streaming traffic (less than 1%) is IPv6, which is consistent with the levels we saw in the World IPv6 Day in June. The fact that the streaming is available via IPv6 is a big step forward, and the fact that at least some users are consuming video over IPv6 is also a big win. http://aim.proceranetworks.com/
http://aim.proceranetworks.com/
Yoigo is a 3G only operator in Spain that offers flat-rate prepaid data service. They have the 3G network only, but they roam with 2G partner. They launched the service with two plans shown on this slide: 35 euro/5GB and 25 euro/3GB. The problem was that when Yoigo subscribers roamed on the partner network Yoigo was losing money because usage was not measured. On the other hand Yoigo is paying by usage charges to the roaming partner. They shape all the customers that are coming on the roaming interface, so that they don’t lose money. In summary traffic for roaming subscribers was shaped to save on usage charges. Yoigo deployed 7720 PLR & PSM. The solution uses PSM to proactively notify the subscribers, an SMS notification is sent to the subscriber. If user accepts that he has passed the limit and will be charged then PSM gets his acceptance back as an SMS message; then allows the subscriber to continue usage.
Note: blocking specific sites , DPI could do that it depends on how this will be presented to the Inline engine Ability to determine a specific application or application type’s impact on network performance, enabling the network operations team to allocate bandwidth accordingly for not only application performance assurance, but network rightsizing and capacity management The ability to identify which applications should be optimized, so that the most-business-critical services can be given priority treatment Proactive network security by helping network operations identify abnormal behavior such as when unusual IP addresses are trying to connect to multiple servers or ports
خدمة سلفني شوية داونلود Every user has a download quota, for example the 512 Kbps give 20 GB, in some condition the user use all his download quota before the end of month “like I did in a Eid el fiter vacation” .. by DPI TE-Data can send the user SMS to offer him a service called “Lend me some download Quota = salefny showayet download” and can give him a free of charge extra 2 GB and it will be deducted for the next month quota as the statics says that this user use download in vacations only and he won’t need all his quota in the next month. Categorization for user by websites the usually visit .. by Hobbies Book worms ” People who likes to browse the book sites” can be detected and contacted by book shops marketing companies telling them about the discounts for bundles ... same can be done for the gamers telling gamers to buy instead of cracking games “like game valley was doing last summer .. selling every game original game with only 50 L.E ”, p.s: Egypt is one of the biggest countries in cracking the software. by educational/ society level Some marketing companies prefer to target distinguished “class A in society” people as they are the most who willing to buy things easily. Per User on demand service blocking/reshaping By using the “per user service insertion” we can provide the customer -who don’t have a proxy server- with “on demand service blocking” to block P2P service or Games ports or some websites or limit his download quota per day or schedule to open games ports for his kids in holidays only, this can be done through a GUI tool he can access or companies web.. for sure many people would pay for this. 4- limiting traffic in congested networks for non-heavy users 5- advertising injection 6- package optimizing 7- application prioritization “viewing” 8- detecting What is behind CPE , by injecting welcome page