SlideShare a Scribd company logo

Scalability with Omni Distributed Analysis Platform

Savvius, Inc
Savvius, Inc

Watch the full OnDemand Webcast: http://bit.ly/OmniScalability The term "scalability" is used a lot in networking, to mean many different things: more speed, more paths, more ports, more uptime, more packets. In general, it implies an architecture which can grow without requiring an extensive redesign. Unfortunately, a lot of this growth generates hidden complexity when it comes to network analysis: each new interconnect increases the total number of links which are capable of moving data, but tracking the end-to-end health of that data requires correlation from a larger number of discrete points. To monitor health and performance, your visibility solution must scale at least as easily as your network. WildPackets is leading the charge with its Omni Distributed Analysis Platform. Join us to see how WildPackets scales across all facets of network analysis, and continues to push the boundaries in high-speed, highly distributed network analysis and troubleshooting with a single distributed cost-effective solution. In this webinar, we will cover: - The key areas of scalability that must be addressed by a network analysis solution - Best practices in addressing key areas of scalability - Practical distributed network analysis scenarios You will learn how to: - Deal with highly interconnected 10G and 40G networks - Eliminate choke-points without eliminating visibility - Design distributed network analysis solutions to meet various scenarios

Technology
1 of 54
Download to read offline
Scalability and OmniPeek Jim MacLeod Jay Botelho Show us your tweets! Product Manager Director, PM Use today’s webinar hashtag: WildPackets WildPackets #wp_scalability jmacleod@wildpackets.com jbotelho@wildpackets.com with any questions, comments, or feedback. Follow me @shewfig Follow me @jaybotelho Follow us @wildpackets © WildPackets, Inc. www.wildpackets.com
Administrivia • All callers are on mute ‒ If you have problems, please let us know via the Chat window • There will be Q&A at the end ‒ Feel free to type a question at any time • Slides and recording will be available: ‒ Via a follow-up email #wp_scalability © WildPackets, Inc. 2
Agenda • Scalability and network analysis • Challenges with high-speed networks (10G/40G/etc) • Best practices in network analysis scalability • Eliminate choke points without eliminating visibility • Distributed network analysis scenarios • About WildPackets • Product line overview #wp_scalability © WildPackets, Inc. 3
Scalability and Network Analysis © WildPackets, Inc. www.wildpackets.com 4
Scalability • The most overloaded term in IT??? • Scalability on 2 levels ‒ Network scalability ‒ Network analysis scalability • Scalability is the ability of a [network] [network analysis solution] to ‒ handle a growing amount of work in a capable manner or ‒ its ability to be enlarged to accommodate that growth1 • The key – “growing amount of work” 1 AndréB. Bondi, 'Characteristics of scalability and their impact on performance', Proceedings of the 2nd international workshop on Software and performance, Ottawa, Ontario, Canada, 2000, ISBN 1-58113-195-X, pages 195–203 #wp_scalability © WildPackets, Inc. 5
Network Growth • Driving network growth: ‒ Number of users/connections ‒ Number of applications ‒ Amount of network traffic ‒ New technologies ‒ New data types ‒ New locations • Network growth drives network analysis growth: ‒ Increased analytical throughput ‒ Increased analytical scope ‒ Increased data storage ‒ Distributed analysis #wp_scalability © WildPackets, Inc. 6
A Classic Example – The 10G Transition Alerts/ User Let It Roll! Alarms Complaints NO Problem? YES Connect the Reproduce Start a Trace Analyzer if Necessary #wp_scalability © WildPackets, Inc. 7
1Gig Is Easy - Now • Use almost any NIC • Use almost any computer • Capture and analyze all in real-time • Little or no special hardware needed (taps, etc.) • Little to no impact on existing network traffic • “Analysis on the fly” still feasible #wp_scalability © WildPackets, Inc.
Challenges with High-Speed Networks © WildPackets, Inc. www.wildpackets.com 9
Challenges with Network Analysis • Capturing at high speeds ‒ Hard to do without dropping packets ‒ Hard to analyze in real time ‒ Hard to store at high speed • Analyzing increasing volumes of data ‒ Needle in a haystack ‒ Where to store it ‒ How to access it • More links, less overall visibility ‒ Easier to add links than capture points #wp_scalability © WildPackets, Inc. 10
How Is 10G Being Utilized? Example 1: Heavy Mfg Example 2: Cisco • Major traffic driver: backups • Focus now on large, flat • Current challenge: 2x and 4x 10G data center fabrics 1G EtherChannel on backup • Fabric Path / TRILL servers is saturating “standard” • New architecture spec for 10x • Nexus 7000 offers 32 ports 1G EtherChannel of 10G • What’s coming: virtualized • Driving need: Constant server clusters growing – one demand for 1G aggregation has 360 VMs! #wp_scalability © WildPackets, Inc.
Strategy for Monitoring 10G Ethernet Which of the following apply to your strategy for monitoring 10G segments? (Select all that apply) Our tools don't support 10G 41.1% Want to keep 1G tools as long as possible 32.9% Can't afford upgrading tools to 10G 21.9% All set - tools already support 10G 21.9% All set - our mirroring sol'n converts 10G to 1G 14.4% Other 4.1% 0% 20% SOURCE: Benchmarking Network and Security Operations: Tools, Processes, and 40% Enabling Technologies Study, 2009, Enterprise Management Associates. n=124 60% #wp_scalability © WildPackets, Inc.
The 10G Challenge • Traditional NICs not up to the task • Processing power is a limiting factor • Storage capacity is a limiting factor • I/O bus and disk write speeds are a limiting factor • 10G forces clarity in analysis • At 10G, it truly is looking for a needle in a haystack • 40G is another leap for network analysis #wp_scalability © WildPackets, Inc. 13
10G Compromises • 10G to 1G taps • Apply pre-capture filters or triggered captures to selectively stream to disk • 10G NIC upgrades in architectures designed for multi-port 1G deployments #wp_scalability © WildPackets, Inc.
10Gig Network Analysis Workflow Identify Key Deploy 24x7 Alarms/ Analysis Pts Monitoring Alerts NO Problem? YES Rewind Tune if Analyze Data Necessary #wp_scalability © WildPackets, Inc.
Changing Methods - Data Recorders 1. Alerts/alarms from network monitoring appliance 3. Real-time and post- incident analysis IDS/IPS System Servers 2. Incident data recorded and ready for analysis #wp_scalability © WildPackets, Inc.
Meeting the 10G Challenge – TimeLine • Fastest network recording and real-time statistical display — simultaneously ‒ 12Gbps sustained capture with zero packet loss ‒ Network statistics display in TimeLine visualization format • Rapid, intuitive forensics search and retrieval ‒ Historical network traffic analysis and quick data rewinding ‒ Several pre-defined forensics search templates making searches easy and fast • A natural extension to the WildPackets product line • Turnkey bundled solution ‒ Appliance + OmniEngine, OmniAdapter, OmniPeek Connect #wp_scalability © WildPackets, Inc.
Best Practices in Network Analysis Scalability © WildPackets, Inc. www.wildpackets.com 18
Network Analysis Scalability • Architecture for sustainable growth ‒ Pod design to horizontally scale compute resources ‒ Extensible backbone or meshed core ‒ Automation, e.g. DHCP  IPAM • Openness to new technologies ‒ Higher speed interfaces, e.g. 10G ‒ Non-hierarchical / multi-path, e.g. Fabric Path / TRILL • Resource planning – Start with Network Analysis ‒ Baseline measurements as a starting point ‒ Track growth in traffic pattern #wp_scalability © WildPackets, Inc. 19
Best Practices • Be ready ‒ Be specific regarding your analysis requirements ‒ Know your network ‒ Analyze the essentials • Know your limits ‒ Filter and slice (whenever possible) ‒ Anticipate hardware resource needs • Be reasonable ‒ Equipment to capture everywhere (CapEx) ‒ Human time required for analysis (OpEx) #wp_scalability © WildPackets, Inc.
Challenges in Scalability • Choke points ‒ Will higher speed links suffice? ‒ Will your equipment support those links? • Mesh ‒ Do you know where your packets are? ‒ Can you still capture essential traffic? #wp_scalability © WildPackets, Inc. 21
Architect for Visibility • Know what traffic is important ‒ Are you looking at servers? ‒ Are you looking at user PCs? ‒ Are you looking at administrative protocols? • Know where to find that traffic ‒ High-Speed capture for high-speed links ‒ Multiple capture points for meshed networks • Build visibility into the infrastructure ‒ Manual placement of portables increases MTTR ‒ Pre-set capture points provide instant information #wp_scalability © WildPackets, Inc. 22
Backbone Visibility • Capturing isn’t enough ‒ Lots of data = big haystack • High speed is typically aggregated low-speed ‒ Inter-switch links or VM host w/ multiple guests ‒ Very few 1Gbps+ flows ‒ Lots of slower flows from different nodes • Not just more bandwidth ‒ More PPS, more nodes, more flows #wp_scalability © WildPackets, Inc. 23
Scale Visibility • Add packet capture to each pod ‒ Uplink for North-South traffic ‒ Internal visibility for East-West traffic • APM: slow traffic between servers affects user experience ‒ Soft taps for VM servers • See the inter-VM traffic • Monitor high-speed links ‒ Inter-switch links have aggregated traffic ‒ Good visibility with reduced complexity and cost • Monitor meshed backbones ‒ Capture at many points ‒ Aggregate on the console #wp_scalability © WildPackets, Inc. 24
Full Packet Path Visibility • Pre-install multiple capture points ‒ Cheaper to install a capture server than to send an engineer ‒ Data moves faster than people: reduce MTTR • Take it to the next level ‒ Multi-Segment Analysis ‒ Identify slow and lossy links • Multiple simultaneous captures show delays and loss • Leverage the power of infrastructure-based capture ‒ Faster MTTR for simple problems ‒ End-to-end analysis for more complicated issues #wp_scalability © WildPackets, Inc. 25
TimeLine for High Speed • Hard to capture with commodity hardware ‒ OmniAdapter: 10Gbps ‒ Commodity card & driver: 3Gbps • Hard to record at speed ‒ “Fast” hard drive is 6Gbps ‒ “Fast” network is 10Gbps+ ‒ TimeLine for dedicated 10G capture at speed • Hard to store high-speed traffic ‒ 10Gbps links contain lots of traffic ‒ Need many TB to provide a reasonable analysis window ‒ TimeLine includes up to 48TB #wp_scalability © WildPackets, Inc. 26
Understanding High Speed • Identifying traffic on aggregated links ‒ Potentinally 1000s of servers ‒ Each server 1000s of client connections • Needs automation ‒ Historical method: SNMP alerts and user complaints ‒ Distributed problem may not be apparent from single source ‒ Must look at the flows themselves, packets don’t lie • Find the problem ‒ Requires synergy of filtering and visualization ‒ Leverage filters with triggers and alerts #wp_scalability © WildPackets, Inc. 27
Eliminating Choke Points without Eliminating Visibility © WildPackets, Inc. www.wildpackets.com 28
Are Choke Points bad? • Foundation of classic network architecture ‒ Know the packet path from the network tree • A single link is “easy” to upgrade ‒ Higher speed, e.g. 1Gbps to 10Gbps • Provides a point of traffic control ‒ Firewalls, IDS/IPS, DLP, etc. • Still single point of failure ‒ If it goes down, large impact on business #wp_scalability © WildPackets, Inc. 29
Alternatives to Choke Points • Bonded links ‒ Originally for speed, e.g. LACP ‒ Now redundancy among multiple switches, e.g. VPC • Active-active redundancy ‒ Routing: ECMP ‒ Switching: FabricPath, TRILL, SPB • “Virtualized network” ‒ MPLS/VPLS – not just for WAN • Now it’s unclear what the packet path is #wp_scalability © WildPackets, Inc. 30
Visibility in Mesh Environments • More links = more potential packet paths ‒ Result: out-of-order delivery? • Common practice: deterministic load splitting ‒ Hash L3 (sometimes L4) to determine which link to use ‒ Maintain continuity among nodes, or within each flow • Visibility options ‒ Use switch SPAN ports to aggregate • Classic bandwidth problem: 2 data links  1 monitoring link ‒ Tap each link • Additional cost per link ‒ “Key” points, plus agent on end nodes • Aggregate multiple captures on the console #wp_scalability © WildPackets, Inc. 31
Distributed Network Analysis Scenarios © WildPackets, Inc. www.wildpackets.com 32
Distributed Analysis #wp_scalability © WildPackets, Inc. 33
Distributed Monitoring #wp_scalability © WildPackets, Inc. 34
Q&A Show us your tweets! Use today’s webinar hashtag: Follow us on SlideShare! Check out today’s slides on SlideShare #wp_scalability www.slideshare.net/wildpackets with any questions, comments, or feedback. Follow us @wildpackets © WildPackets, Inc. www.wildpackets.com
WildPackets Corporate Overview Optimizing Network and Application Performance © WildPackets, Inc. www.wildpackets.com
Corporate Background • Experts in network monitoring, analysis, and troubleshooting ‒ Founded: 1990 / Headquarters: Walnut Creek, CA ‒ Offices throughout the US, EMEA, and APAC • Our customers are leading edge organizations ‒ Mid-market and enterprise lines of business ‒ Financial, manufacturing, ISPs, major federal agencies, state and local governments, and universities ‒ Over 7,000 customers / 60+ countries / 80% of Fortune 1,000 • Award-winning solutions that improve network performance ‒ Internet Telephony, Network Magazine, Network Computing awards ‒ United States Patent 5,787,253 issued July 28, 1998 • “Apparatus and Method of Analyzing Internet Activity” #wp_scalability © WildPackets, Inc.
Business Opportunity • Growing $5B network management market (Gartner) • VoIP, video, and other converged networking applications are saturating network bandwidth • Increasing network speeds create a discontinuity ‒ 1 Gig  10 Gig  40 Gig  100 Gig networks • Users and business will not tolerate downtime Need for better real-time network visibility in addition to network forensics and DPI #wp_scalability © WildPackets, Inc.
Unprecedented Network Visibility NETWORK HEALTH GLOBAL WatchPoint can manage and report on key devices’ performance and availability across the entire network, from anywhere on the network. UNDERSTAND END-USER PERFORMANCE TimeLine and Omnipliance network recorders monitor DISTRIBUTED and analyze performance across critical network segments, virtual environments, and remote sites. PINPOINT NETWORK ISSUES ANYWHERE Omnipliance Portable can rapidly identify and troubleshoot PORTABLE issues before they become major problems—wired or wireless—down the hall or across the globe. ROOT-CAUSE ANALYSIS OmniPeek network analyzer performs deep packet inspection DPI and can reconstruct all network activity, including e-mail and IM, as well as analyze VoIP and video traffic quality. #wp_scalability © WildPackets, Inc.
A History of Innovation 2001 2005 2009 2011 • First 802.11 Combined distributed Innovative dashboard • Total visibility with wireless analyzer network and VoIP with drill-down for VoIP zero packet loss • First network network analysis and video • First wireless analyzer with network analyzer to automated expert support capture and analysis analysis of 802.11n 3-stream wireless 2003 2008 2010 2012 Distributed real-time Enterprise-wide First to achieve 11 Gbps • Capture, record, and troubleshooting Monitoring and Reporting sustained capture-to-disk analyze from 40G network segments • First wireless network analyzer to support 801.11ac, k, r, u, v, w #wp_scalability © WildPackets, Inc.
Real-World Deployments Education Financial Government Health Care / Retail Telecom Technology WildPackets Proprietary #wp_scalability © WildPackets, Inc.
Product Line Overview © WildPackets, Inc. www.wildpackets.com
Omni Distributed Analysis Platform OmniPeek Enterprise Packet Capture, Decode and Analysis • Ethernet,1/10 Gigabit, 802.11, and voice and video over IP • Portable capture and OmniEngine console • Aggregate analysis data across multiple capture points Omnipliance / TimeLine Distributed Enterprise Network Forensics • High-performance packet capture and real-time analysis • Stream-to-disk for forensics analysis • Integrated OmniAdapter network analysis cards up to 40G WatchPoint Centralized Enterprise Network Monitoring Appliance • Aggregation and graphical display of network data • WildPackets OmniEngines • NetFlow and sFlow #wp_scalability © WildPackets, Inc.
Omni Distributed Analysis Platform Software and Turnkey Solutions • Enterprise monitoring and reporting ‒ WatchPoint Server ‒ OmniFlow, NetFlow, and sFlow Collectors • Software probes and network recorders ‒ Omnipliance network recorders – Edge, Core ‒ TimeLine network recorders ‒ OmniAdapter analysis cards • Distributed analysis software ‒ OmniPeek – Enterprise, Professional, Basic, Connect ‒ OmniEngine – Enterprise, Desktop, OmniVirtual • Portable solutions ‒ OmniPeek network analyzer ‒ Omnipliance Portable #wp_scalability © WildPackets, Inc.
Key New Features in v7 • 40G network support • Analyze issues from end to end: Multi-Segment Analysis (MSA) • Collect data from non-technical end users: OmniPeek Remote Assistant (ORA) • Single, interactive dashboard for utilization, top talkers, top protocols, latency, Experts, flows, and wireless signal strength • New wireless specifications ‒ 802.11ac 802.11k ‒ 802.11r 802.11u ‒ 802.11v 802.11w #wp_scalability © WildPackets, Inc.
OmniPeek Network Analyzer • Distributed analysis manager – Connect to and configure distributed OmniEngines, Omnipliances, and TimeLines • Comprehensive dashboards present network traffic in real-time – Vital statistics and graphs display trends on network and application performance – Visual peer-map shows conversations and protocols – Intuitive drill-down for root-cause analysis of performance bottlenecks • Visual Expert diagnosis speeds problem resolution – Packet and payload visualizers provide business-centric views • Automated analytics and problem detection 24/7 – Easily create filters, triggers, scripting, advanced alarms, and alerts #wp_scalability © WildPackets, Inc.
Omnipliance Network Recorders • Captures and analyzes all network traffic 24x7 – Runs WildPackets OmniEngine software probe – Generates vital statistics on network and application performance – Intuitive root-cause analysis of performance bottlenecks • Expert analysis speeds problem resolution – Fault analysis, statistical analysis, and independent notification • Multiple issue digital forensics – Real-time and post capture data mining for compliance and troubleshooting • Intelligent data transport – Network data analyzed locally – Detailed analysis passed to OmniPeek on demand – Summary statistics sent to WatchPoint for long term trending and reporting – Efficient use of network bandwidth • User-extensible platform – Plug-in architecture and SDK #wp_scalability © WildPackets, Inc.
TimeLine Network Recorder • Continuous network recording and comprehensive real-time statistical display — simultaneously ‒ 12Gbps sustained capture with zero packet loss ‒ Network statistics display in TimeLine visualization format • Rapid, intuitive forensics search and retrieval ‒ Historical network traffic analysis and quick data rewinding ‒ Several pre-defined forensics search templates making searches easy and fast • A natural extension to the WildPackets product line • Turnkey bundled solution ‒ Appliance + OmniEngine, OmniAdapter, OmniPeek Connect #wp_scalability © WildPackets, Inc.
WildPackets Network Recorders Price/Performance Solutions for Every Application Portable Edge Core TimeLine Ruggedized Small Networks Datacenter Workhorse Enterprise, Highly- Troubleshooting Remote Offices Easily Expandable Utilized Networks Aluminum chassis / 17” LCD 1U rack mountable chassis 3U rack mountable chassis 3U rack mountable chassis Dual 2.13 GHz Quad-Core Intel Quad-Core Intel Xeon X3460 Dual Intel Xeon Quad Core Dual Intel Xeon Quad Core Xeon L5630 "Westmere" 2.80Ghz E5530 2.4GHz X5560 2.8GHz 24GB RAM 4GB RAM 6GB RAM 18GB RAM 2 PCI-E Slots 2 PCI-E Slots 4 PCI-E Slots 4 PCI-E Slots 2 Built-in Ethernet Ports 2 Built-in Ethernet Ports 2 Built-in Ethernet Ports 2 Built-in Ethernet Ports 6TB SATA storage capacity 1TB SATA storage capacity 8/16TB SATA 8/16/32/48TB SATA storage capacity storage capacity 4.5Gbps CTD 1.1Gbps CTD 3Gbps CTD 12Gbps CTD #wp_scalability © WildPackets, Inc.
WatchPoint Centralized Monitoring for Distributed Enterprise Networks • High-level, aggregated view of all network segments – Monitor per campus, per region, per country • Wide range of network data – NetFlow, sFlow, OmniFlow • Web-based, customizable network dashboards • Flexible detailed reports • Direct link to detailed, packet-based analysis #wp_scalability © WildPackets, Inc.
Comprehensive Support and Services Standard Support Premier Support  Maintenance and upgrades  24 x 7 x 365  Telephone and email contacts  Dedicated escalation manager  Knowledgebase  2 customer contacts per site  MyPeek Portal  Plug-in reconfiguration assistance WildPackets Training Academy  Public, web-based, and on-site classes  Complete curriculum: technology and product focused  Practical applications and labs covering network analysis, wireless, VoIP monitoring and advanced troubleshooting Consulting and Custom Development Services  Deployment, configuration, and assessment engagement  Systems integration and testing  Application integration, driver, decode, interface development #wp_scalability © WildPackets, Inc.
24x7 Network Monitoring, Analysis, and Troubleshooting #wp_scalability © WildPackets, Inc.
WildPackets Key Differentiators • Visual Expert intelligence with intuitive drill-down – Let computer do the hard work, and return results, real-time – Packet /payload visualization is faster than packet-per-packet diagnostics – Experts and analytics can be memorized and automated • Automated capture analytics – Filters, triggers, scripting, and advanced alarming system combine to provide automated network problem detection 24x7 • Multiple issue network forensics – Can be tracked by one or more people simultaneously – Real-time or post capture • User-extensible platform – Plug-in architecture and SDK • Aggregated network views and reporting – NetFlow, sFlow, and OmniFlow #wp_scalability © WildPackets, Inc.
Thank You! WildPackets, Inc. 1340 Treat Boulevard, Suite 500 Walnut Creek, CA 94597 (925) 937-3200 © WildPackets, Inc. www.wildpackets.com

Recommended

Omnipliance family - Powerful Precise Affordable
Omnipliance family - Powerful Precise AffordableOmnipliance family - Powerful Precise Affordable
Omnipliance family - Powerful Precise AffordableSavvius, Inc
 
Capturing 802.11ac Data
Capturing 802.11ac DataCapturing 802.11ac Data
Capturing 802.11ac DataSavvius, Inc
 
802.11ac: Technologies and Deployment Strategies with FarPoint Group
802.11ac: Technologies and Deployment Strategies with FarPoint Group802.11ac: Technologies and Deployment Strategies with FarPoint Group
802.11ac: Technologies and Deployment Strategies with FarPoint GroupSavvius, Inc
 
Introducing Savvius Vigil
Introducing Savvius VigilIntroducing Savvius Vigil
Introducing Savvius VigilSavvius, Inc
 
Long Term Reporting with Savvius and Splunk
Long Term Reporting with Savvius and SplunkLong Term Reporting with Savvius and Splunk
Long Term Reporting with Savvius and SplunkSavvius, Inc
 
Network Forensics Backwards and Forwards
Network Forensics Backwards and ForwardsNetwork Forensics Backwards and Forwards
Network Forensics Backwards and ForwardsSavvius, Inc
 
Network Analysis Tips & Tricks with Omnipeek
Network Analysis Tips & Tricks with OmnipeekNetwork Analysis Tips & Tricks with Omnipeek
Network Analysis Tips & Tricks with OmnipeekSavvius, Inc
 
Why Every Engineer Needs WLAN Packet Analysis
Why Every Engineer Needs WLAN Packet AnalysisWhy Every Engineer Needs WLAN Packet Analysis
Why Every Engineer Needs WLAN Packet AnalysisSavvius, Inc
 

Recommended

Omnipliance family - Powerful Precise Affordable
Omnipliance family - Powerful Precise AffordableOmnipliance family - Powerful Precise Affordable
Omnipliance family - Powerful Precise AffordableSavvius, Inc
 
Capturing 802.11ac Data
Capturing 802.11ac DataCapturing 802.11ac Data
Capturing 802.11ac DataSavvius, Inc
 
802.11ac: Technologies and Deployment Strategies with FarPoint Group
802.11ac: Technologies and Deployment Strategies with FarPoint Group802.11ac: Technologies and Deployment Strategies with FarPoint Group
802.11ac: Technologies and Deployment Strategies with FarPoint GroupSavvius, Inc
 
Introducing Savvius Vigil
Introducing Savvius VigilIntroducing Savvius Vigil
Introducing Savvius VigilSavvius, Inc
 
Long Term Reporting with Savvius and Splunk
Long Term Reporting with Savvius and SplunkLong Term Reporting with Savvius and Splunk
Long Term Reporting with Savvius and SplunkSavvius, Inc
 
Network Forensics Backwards and Forwards
Network Forensics Backwards and ForwardsNetwork Forensics Backwards and Forwards
Network Forensics Backwards and ForwardsSavvius, Inc
 
Network Analysis Tips & Tricks with Omnipeek
Network Analysis Tips & Tricks with OmnipeekNetwork Analysis Tips & Tricks with Omnipeek
Network Analysis Tips & Tricks with OmnipeekSavvius, Inc
 
Why Every Engineer Needs WLAN Packet Analysis
Why Every Engineer Needs WLAN Packet AnalysisWhy Every Engineer Needs WLAN Packet Analysis
Why Every Engineer Needs WLAN Packet AnalysisSavvius, Inc
 
Bright talk voip vofi webinar jan2015-v2
Bright talk voip vofi webinar jan2015-v2Bright talk voip vofi webinar jan2015-v2
Bright talk voip vofi webinar jan2015-v2Savvius, Inc
 
You Suspect a Security Breach. Network Forensic Analysis Gives You the Answers
You Suspect a Security Breach. Network Forensic Analysis Gives You the AnswersYou Suspect a Security Breach. Network Forensic Analysis Gives You the Answers
You Suspect a Security Breach. Network Forensic Analysis Gives You the AnswersSavvius, Inc
 
Are you ready for 802.11ac?
Are you ready for 802.11ac?Are you ready for 802.11ac?
Are you ready for 802.11ac?Savvius, Inc
 
Are You Missing Something?
Are You Missing Something?Are You Missing Something?
Are You Missing Something?Savvius, Inc
 
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...Savvius, Inc
 
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...Savvius, Inc
 
Managing a Widely Distributed Network
Managing a Widely Distributed Network Managing a Widely Distributed Network
Managing a Widely Distributed Network Savvius, Inc
 
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...Savvius, Inc
 
WildPackets EMA Whitepaper Preview
WildPackets EMA Whitepaper PreviewWildPackets EMA Whitepaper Preview
WildPackets EMA Whitepaper PreviewSavvius, Inc
 
Gigabit WLANs Need Gigabit WLAN Analysis
Gigabit WLANs Need Gigabit WLAN AnalysisGigabit WLANs Need Gigabit WLAN Analysis
Gigabit WLANs Need Gigabit WLAN AnalysisSavvius, Inc
 
Security Attack Analysis for Finding and Stopping Network Attacks
Security Attack Analysis for Finding and Stopping Network AttacksSecurity Attack Analysis for Finding and Stopping Network Attacks
Security Attack Analysis for Finding and Stopping Network AttacksSavvius, Inc
 
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...Savvius, Inc
 
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)Savvius, Inc
 
The Changing Landscape in Network Performance Monitoring
The Changing Landscape in Network Performance Monitoring The Changing Landscape in Network Performance Monitoring
The Changing Landscape in Network Performance Monitoring Savvius, Inc
 
Wired and Wireless Network Forensics
Wired and Wireless Network ForensicsWired and Wireless Network Forensics
Wired and Wireless Network ForensicsSavvius, Inc
 
Real-Time Visibility into High Speed Networks
Real-Time Visibility into High Speed NetworksReal-Time Visibility into High Speed Networks
Real-Time Visibility into High Speed NetworksSavvius, Inc
 
Bringing Big Data Analytics to Network Monitoring
Bringing Big Data Analytics to Network MonitoringBringing Big Data Analytics to Network Monitoring
Bringing Big Data Analytics to Network MonitoringSavvius, Inc
 
Network Analysis Tips and Tricks with OmniPeek
Network Analysis Tips and Tricks with OmniPeekNetwork Analysis Tips and Tricks with OmniPeek
Network Analysis Tips and Tricks with OmniPeekSavvius, Inc
 
The blind spot in virtual servers - seeing with network analysis
The blind spot in virtual servers - seeing with network analysisThe blind spot in virtual servers - seeing with network analysis
The blind spot in virtual servers - seeing with network analysisSavvius, Inc
 
Introducing network analysis and data capture for 802.11ac
Introducing network analysis and data capture for 802.11acIntroducing network analysis and data capture for 802.11ac
Introducing network analysis and data capture for 802.11acSavvius, Inc
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Jeffrey Haguewood
 

More Related Content

More from Savvius, Inc

Bright talk voip vofi webinar jan2015-v2
Bright talk voip vofi webinar jan2015-v2Bright talk voip vofi webinar jan2015-v2
Bright talk voip vofi webinar jan2015-v2Savvius, Inc
 
You Suspect a Security Breach. Network Forensic Analysis Gives You the Answers
You Suspect a Security Breach. Network Forensic Analysis Gives You the AnswersYou Suspect a Security Breach. Network Forensic Analysis Gives You the Answers
You Suspect a Security Breach. Network Forensic Analysis Gives You the AnswersSavvius, Inc
 
Are you ready for 802.11ac?
Are you ready for 802.11ac?Are you ready for 802.11ac?
Are you ready for 802.11ac?Savvius, Inc
 
Are You Missing Something?
Are You Missing Something?Are You Missing Something?
Are You Missing Something?Savvius, Inc
 
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...Savvius, Inc
 
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...Savvius, Inc
 
Managing a Widely Distributed Network
Managing a Widely Distributed Network Managing a Widely Distributed Network
Managing a Widely Distributed Network Savvius, Inc
 
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...Savvius, Inc
 
WildPackets EMA Whitepaper Preview
WildPackets EMA Whitepaper PreviewWildPackets EMA Whitepaper Preview
WildPackets EMA Whitepaper PreviewSavvius, Inc
 
Gigabit WLANs Need Gigabit WLAN Analysis
Gigabit WLANs Need Gigabit WLAN AnalysisGigabit WLANs Need Gigabit WLAN Analysis
Gigabit WLANs Need Gigabit WLAN AnalysisSavvius, Inc
 
Security Attack Analysis for Finding and Stopping Network Attacks
Security Attack Analysis for Finding and Stopping Network AttacksSecurity Attack Analysis for Finding and Stopping Network Attacks
Security Attack Analysis for Finding and Stopping Network AttacksSavvius, Inc
 
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...Savvius, Inc
 
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)Savvius, Inc
 
The Changing Landscape in Network Performance Monitoring
The Changing Landscape in Network Performance Monitoring The Changing Landscape in Network Performance Monitoring
The Changing Landscape in Network Performance Monitoring Savvius, Inc
 
Wired and Wireless Network Forensics
Wired and Wireless Network ForensicsWired and Wireless Network Forensics
Wired and Wireless Network ForensicsSavvius, Inc
 
Real-Time Visibility into High Speed Networks
Real-Time Visibility into High Speed NetworksReal-Time Visibility into High Speed Networks
Real-Time Visibility into High Speed NetworksSavvius, Inc
 
Bringing Big Data Analytics to Network Monitoring
Bringing Big Data Analytics to Network MonitoringBringing Big Data Analytics to Network Monitoring
Bringing Big Data Analytics to Network MonitoringSavvius, Inc
 
Network Analysis Tips and Tricks with OmniPeek
Network Analysis Tips and Tricks with OmniPeekNetwork Analysis Tips and Tricks with OmniPeek
Network Analysis Tips and Tricks with OmniPeekSavvius, Inc
 
The blind spot in virtual servers - seeing with network analysis
The blind spot in virtual servers - seeing with network analysisThe blind spot in virtual servers - seeing with network analysis
The blind spot in virtual servers - seeing with network analysisSavvius, Inc
 
Introducing network analysis and data capture for 802.11ac
Introducing network analysis and data capture for 802.11acIntroducing network analysis and data capture for 802.11ac
Introducing network analysis and data capture for 802.11acSavvius, Inc
 

More from Savvius, Inc (20)

Bright talk voip vofi webinar jan2015-v2
Bright talk voip vofi webinar jan2015-v2Bright talk voip vofi webinar jan2015-v2
Bright talk voip vofi webinar jan2015-v2
 
You Suspect a Security Breach. Network Forensic Analysis Gives You the Answers
You Suspect a Security Breach. Network Forensic Analysis Gives You the AnswersYou Suspect a Security Breach. Network Forensic Analysis Gives You the Answers
You Suspect a Security Breach. Network Forensic Analysis Gives You the Answers
 
Are you ready for 802.11ac?
Are you ready for 802.11ac?Are you ready for 802.11ac?
Are you ready for 802.11ac?
 
Are You Missing Something?
Are You Missing Something?Are You Missing Something?
Are You Missing Something?
 
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
All Hope is Not Lost Network Forensics Exposes Today's Advanced Security Thr...
 
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...
Visibility into 40G/100G Networks for Real-time and Post Capture Analysis and...
 
Managing a Widely Distributed Network
Managing a Widely Distributed Network Managing a Widely Distributed Network
Managing a Widely Distributed Network
 
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...
VoIP Monitoring and Analysis - Still Top of Mind in Network Performance Monit...
 
WildPackets EMA Whitepaper Preview
WildPackets EMA Whitepaper PreviewWildPackets EMA Whitepaper Preview
WildPackets EMA Whitepaper Preview
 
Gigabit WLANs Need Gigabit WLAN Analysis
Gigabit WLANs Need Gigabit WLAN AnalysisGigabit WLANs Need Gigabit WLAN Analysis
Gigabit WLANs Need Gigabit WLAN Analysis
 
Security Attack Analysis for Finding and Stopping Network Attacks
Security Attack Analysis for Finding and Stopping Network AttacksSecurity Attack Analysis for Finding and Stopping Network Attacks
Security Attack Analysis for Finding and Stopping Network Attacks
 
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...
Network Network Visibility - The Key to Rapidly Troubleshooting Network Perfo...
 
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)
Wireless Network Analysis 101 VoFi (Voice over Wi-Fi)
 
The Changing Landscape in Network Performance Monitoring
The Changing Landscape in Network Performance Monitoring The Changing Landscape in Network Performance Monitoring
The Changing Landscape in Network Performance Monitoring
 
Wired and Wireless Network Forensics
Wired and Wireless Network ForensicsWired and Wireless Network Forensics
Wired and Wireless Network Forensics
 
Real-Time Visibility into High Speed Networks
Real-Time Visibility into High Speed NetworksReal-Time Visibility into High Speed Networks
Real-Time Visibility into High Speed Networks
 
Bringing Big Data Analytics to Network Monitoring
Bringing Big Data Analytics to Network MonitoringBringing Big Data Analytics to Network Monitoring
Bringing Big Data Analytics to Network Monitoring
 
Network Analysis Tips and Tricks with OmniPeek
Network Analysis Tips and Tricks with OmniPeekNetwork Analysis Tips and Tricks with OmniPeek
Network Analysis Tips and Tricks with OmniPeek
 
The blind spot in virtual servers - seeing with network analysis
The blind spot in virtual servers - seeing with network analysisThe blind spot in virtual servers - seeing with network analysis
The blind spot in virtual servers - seeing with network analysis
 
Introducing network analysis and data capture for 802.11ac
Introducing network analysis and data capture for 802.11acIntroducing network analysis and data capture for 802.11ac
Introducing network analysis and data capture for 802.11ac
 

Recently uploaded

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Jeffrey Haguewood
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodJuan lago vázquez
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Zilliz
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyKhushali Kathiriya
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Victor Rentea
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Orbitshub
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdfSandro Moreira
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsNanddeep Nachan
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...Zilliz
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistandanishmna97
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businesspanagenda
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MIND CTI
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityWSO2
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...apidays
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDropbox
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2
 

Recently uploaded (20)

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering Developers
 

Scalability with Omni Distributed Analysis Platform

  • 1. Scalability and OmniPeek Jim MacLeod Jay Botelho Show us your tweets! Product Manager Director, PM Use today’s webinar hashtag: WildPackets WildPackets #wp_scalability jmacleod@wildpackets.com jbotelho@wildpackets.com with any questions, comments, or feedback. Follow me @shewfig Follow me @jaybotelho Follow us @wildpackets © WildPackets, Inc. www.wildpackets.com
  • 2. Administrivia • All callers are on mute ‒ If you have problems, please let us know via the Chat window • There will be Q&A at the end ‒ Feel free to type a question at any time • Slides and recording will be available: ‒ Via a follow-up email #wp_scalability © WildPackets, Inc. 2
  • 3. Agenda • Scalability and network analysis • Challenges with high-speed networks (10G/40G/etc) • Best practices in network analysis scalability • Eliminate choke points without eliminating visibility • Distributed network analysis scenarios • About WildPackets • Product line overview #wp_scalability © WildPackets, Inc. 3
  • 4. Scalability and Network Analysis © WildPackets, Inc. www.wildpackets.com 4
  • 5. Scalability • The most overloaded term in IT??? • Scalability on 2 levels ‒ Network scalability ‒ Network analysis scalability • Scalability is the ability of a [network] [network analysis solution] to ‒ handle a growing amount of work in a capable manner or ‒ its ability to be enlarged to accommodate that growth1 • The key – “growing amount of work” 1 AndréB. Bondi, 'Characteristics of scalability and their impact on performance', Proceedings of the 2nd international workshop on Software and performance, Ottawa, Ontario, Canada, 2000, ISBN 1-58113-195-X, pages 195–203 #wp_scalability © WildPackets, Inc. 5
  • 6. Network Growth • Driving network growth: ‒ Number of users/connections ‒ Number of applications ‒ Amount of network traffic ‒ New technologies ‒ New data types ‒ New locations • Network growth drives network analysis growth: ‒ Increased analytical throughput ‒ Increased analytical scope ‒ Increased data storage ‒ Distributed analysis #wp_scalability © WildPackets, Inc. 6
  • 7. A Classic Example – The 10G Transition Alerts/ User Let It Roll! Alarms Complaints NO Problem? YES Connect the Reproduce Start a Trace Analyzer if Necessary #wp_scalability © WildPackets, Inc. 7
  • 8. 1Gig Is Easy - Now • Use almost any NIC • Use almost any computer • Capture and analyze all in real-time • Little or no special hardware needed (taps, etc.) • Little to no impact on existing network traffic • “Analysis on the fly” still feasible #wp_scalability © WildPackets, Inc.
  • 9. Challenges with High-Speed Networks © WildPackets, Inc. www.wildpackets.com 9
  • 10. Challenges with Network Analysis • Capturing at high speeds ‒ Hard to do without dropping packets ‒ Hard to analyze in real time ‒ Hard to store at high speed • Analyzing increasing volumes of data ‒ Needle in a haystack ‒ Where to store it ‒ How to access it • More links, less overall visibility ‒ Easier to add links than capture points #wp_scalability © WildPackets, Inc. 10
  • 11. How Is 10G Being Utilized? Example 1: Heavy Mfg Example 2: Cisco • Major traffic driver: backups • Focus now on large, flat • Current challenge: 2x and 4x 10G data center fabrics 1G EtherChannel on backup • Fabric Path / TRILL servers is saturating “standard” • New architecture spec for 10x • Nexus 7000 offers 32 ports 1G EtherChannel of 10G • What’s coming: virtualized • Driving need: Constant server clusters growing – one demand for 1G aggregation has 360 VMs! #wp_scalability © WildPackets, Inc.
  • 12. Strategy for Monitoring 10G Ethernet Which of the following apply to your strategy for monitoring 10G segments? (Select all that apply) Our tools don't support 10G 41.1% Want to keep 1G tools as long as possible 32.9% Can't afford upgrading tools to 10G 21.9% All set - tools already support 10G 21.9% All set - our mirroring sol'n converts 10G to 1G 14.4% Other 4.1% 0% 20% SOURCE: Benchmarking Network and Security Operations: Tools, Processes, and 40% Enabling Technologies Study, 2009, Enterprise Management Associates. n=124 60% #wp_scalability © WildPackets, Inc.
  • 13. The 10G Challenge • Traditional NICs not up to the task • Processing power is a limiting factor • Storage capacity is a limiting factor • I/O bus and disk write speeds are a limiting factor • 10G forces clarity in analysis • At 10G, it truly is looking for a needle in a haystack • 40G is another leap for network analysis #wp_scalability © WildPackets, Inc. 13
  • 14. 10G Compromises • 10G to 1G taps • Apply pre-capture filters or triggered captures to selectively stream to disk • 10G NIC upgrades in architectures designed for multi-port 1G deployments #wp_scalability © WildPackets, Inc.
  • 15. 10Gig Network Analysis Workflow Identify Key Deploy 24x7 Alarms/ Analysis Pts Monitoring Alerts NO Problem? YES Rewind Tune if Analyze Data Necessary #wp_scalability © WildPackets, Inc.
  • 16. Changing Methods - Data Recorders 1. Alerts/alarms from network monitoring appliance 3. Real-time and post- incident analysis IDS/IPS System Servers 2. Incident data recorded and ready for analysis #wp_scalability © WildPackets, Inc.
  • 17. Meeting the 10G Challenge – TimeLine • Fastest network recording and real-time statistical display — simultaneously ‒ 12Gbps sustained capture with zero packet loss ‒ Network statistics display in TimeLine visualization format • Rapid, intuitive forensics search and retrieval ‒ Historical network traffic analysis and quick data rewinding ‒ Several pre-defined forensics search templates making searches easy and fast • A natural extension to the WildPackets product line • Turnkey bundled solution ‒ Appliance + OmniEngine, OmniAdapter, OmniPeek Connect #wp_scalability © WildPackets, Inc.
  • 18. Best Practices in Network Analysis Scalability © WildPackets, Inc. www.wildpackets.com 18
  • 19. Network Analysis Scalability • Architecture for sustainable growth ‒ Pod design to horizontally scale compute resources ‒ Extensible backbone or meshed core ‒ Automation, e.g. DHCP  IPAM • Openness to new technologies ‒ Higher speed interfaces, e.g. 10G ‒ Non-hierarchical / multi-path, e.g. Fabric Path / TRILL • Resource planning – Start with Network Analysis ‒ Baseline measurements as a starting point ‒ Track growth in traffic pattern #wp_scalability © WildPackets, Inc. 19
  • 20. Best Practices • Be ready ‒ Be specific regarding your analysis requirements ‒ Know your network ‒ Analyze the essentials • Know your limits ‒ Filter and slice (whenever possible) ‒ Anticipate hardware resource needs • Be reasonable ‒ Equipment to capture everywhere (CapEx) ‒ Human time required for analysis (OpEx) #wp_scalability © WildPackets, Inc.
  • 21. Challenges in Scalability • Choke points ‒ Will higher speed links suffice? ‒ Will your equipment support those links? • Mesh ‒ Do you know where your packets are? ‒ Can you still capture essential traffic? #wp_scalability © WildPackets, Inc. 21
  • 22. Architect for Visibility • Know what traffic is important ‒ Are you looking at servers? ‒ Are you looking at user PCs? ‒ Are you looking at administrative protocols? • Know where to find that traffic ‒ High-Speed capture for high-speed links ‒ Multiple capture points for meshed networks • Build visibility into the infrastructure ‒ Manual placement of portables increases MTTR ‒ Pre-set capture points provide instant information #wp_scalability © WildPackets, Inc. 22
  • 23. Backbone Visibility • Capturing isn’t enough ‒ Lots of data = big haystack • High speed is typically aggregated low-speed ‒ Inter-switch links or VM host w/ multiple guests ‒ Very few 1Gbps+ flows ‒ Lots of slower flows from different nodes • Not just more bandwidth ‒ More PPS, more nodes, more flows #wp_scalability © WildPackets, Inc. 23
  • 24. Scale Visibility • Add packet capture to each pod ‒ Uplink for North-South traffic ‒ Internal visibility for East-West traffic • APM: slow traffic between servers affects user experience ‒ Soft taps for VM servers • See the inter-VM traffic • Monitor high-speed links ‒ Inter-switch links have aggregated traffic ‒ Good visibility with reduced complexity and cost • Monitor meshed backbones ‒ Capture at many points ‒ Aggregate on the console #wp_scalability © WildPackets, Inc. 24
  • 25. Full Packet Path Visibility • Pre-install multiple capture points ‒ Cheaper to install a capture server than to send an engineer ‒ Data moves faster than people: reduce MTTR • Take it to the next level ‒ Multi-Segment Analysis ‒ Identify slow and lossy links • Multiple simultaneous captures show delays and loss • Leverage the power of infrastructure-based capture ‒ Faster MTTR for simple problems ‒ End-to-end analysis for more complicated issues #wp_scalability © WildPackets, Inc. 25
  • 26. TimeLine for High Speed • Hard to capture with commodity hardware ‒ OmniAdapter: 10Gbps ‒ Commodity card & driver: 3Gbps • Hard to record at speed ‒ “Fast” hard drive is 6Gbps ‒ “Fast” network is 10Gbps+ ‒ TimeLine for dedicated 10G capture at speed • Hard to store high-speed traffic ‒ 10Gbps links contain lots of traffic ‒ Need many TB to provide a reasonable analysis window ‒ TimeLine includes up to 48TB #wp_scalability © WildPackets, Inc. 26
  • 27. Understanding High Speed • Identifying traffic on aggregated links ‒ Potentinally 1000s of servers ‒ Each server 1000s of client connections • Needs automation ‒ Historical method: SNMP alerts and user complaints ‒ Distributed problem may not be apparent from single source ‒ Must look at the flows themselves, packets don’t lie • Find the problem ‒ Requires synergy of filtering and visualization ‒ Leverage filters with triggers and alerts #wp_scalability © WildPackets, Inc. 27
  • 28. Eliminating Choke Points without Eliminating Visibility © WildPackets, Inc. www.wildpackets.com 28
  • 29. Are Choke Points bad? • Foundation of classic network architecture ‒ Know the packet path from the network tree • A single link is “easy” to upgrade ‒ Higher speed, e.g. 1Gbps to 10Gbps • Provides a point of traffic control ‒ Firewalls, IDS/IPS, DLP, etc. • Still single point of failure ‒ If it goes down, large impact on business #wp_scalability © WildPackets, Inc. 29
  • 30. Alternatives to Choke Points • Bonded links ‒ Originally for speed, e.g. LACP ‒ Now redundancy among multiple switches, e.g. VPC • Active-active redundancy ‒ Routing: ECMP ‒ Switching: FabricPath, TRILL, SPB • “Virtualized network” ‒ MPLS/VPLS – not just for WAN • Now it’s unclear what the packet path is #wp_scalability © WildPackets, Inc. 30
  • 31. Visibility in Mesh Environments • More links = more potential packet paths ‒ Result: out-of-order delivery? • Common practice: deterministic load splitting ‒ Hash L3 (sometimes L4) to determine which link to use ‒ Maintain continuity among nodes, or within each flow • Visibility options ‒ Use switch SPAN ports to aggregate • Classic bandwidth problem: 2 data links  1 monitoring link ‒ Tap each link • Additional cost per link ‒ “Key” points, plus agent on end nodes • Aggregate multiple captures on the console #wp_scalability © WildPackets, Inc. 31
  • 32. Distributed Network Analysis Scenarios © WildPackets, Inc. www.wildpackets.com 32
  • 33. Distributed Analysis #wp_scalability © WildPackets, Inc. 33
  • 34. Distributed Monitoring #wp_scalability © WildPackets, Inc. 34
  • 35. Q&A Show us your tweets! Use today’s webinar hashtag: Follow us on SlideShare! Check out today’s slides on SlideShare #wp_scalability www.slideshare.net/wildpackets with any questions, comments, or feedback. Follow us @wildpackets © WildPackets, Inc. www.wildpackets.com
  • 36. WildPackets Corporate Overview Optimizing Network and Application Performance © WildPackets, Inc. www.wildpackets.com
  • 37. Corporate Background • Experts in network monitoring, analysis, and troubleshooting ‒ Founded: 1990 / Headquarters: Walnut Creek, CA ‒ Offices throughout the US, EMEA, and APAC • Our customers are leading edge organizations ‒ Mid-market and enterprise lines of business ‒ Financial, manufacturing, ISPs, major federal agencies, state and local governments, and universities ‒ Over 7,000 customers / 60+ countries / 80% of Fortune 1,000 • Award-winning solutions that improve network performance ‒ Internet Telephony, Network Magazine, Network Computing awards ‒ United States Patent 5,787,253 issued July 28, 1998 • “Apparatus and Method of Analyzing Internet Activity” #wp_scalability © WildPackets, Inc.
  • 38. Business Opportunity • Growing $5B network management market (Gartner) • VoIP, video, and other converged networking applications are saturating network bandwidth • Increasing network speeds create a discontinuity ‒ 1 Gig  10 Gig  40 Gig  100 Gig networks • Users and business will not tolerate downtime Need for better real-time network visibility in addition to network forensics and DPI #wp_scalability © WildPackets, Inc.
  • 39. Unprecedented Network Visibility NETWORK HEALTH GLOBAL WatchPoint can manage and report on key devices’ performance and availability across the entire network, from anywhere on the network. UNDERSTAND END-USER PERFORMANCE TimeLine and Omnipliance network recorders monitor DISTRIBUTED and analyze performance across critical network segments, virtual environments, and remote sites. PINPOINT NETWORK ISSUES ANYWHERE Omnipliance Portable can rapidly identify and troubleshoot PORTABLE issues before they become major problems—wired or wireless—down the hall or across the globe. ROOT-CAUSE ANALYSIS OmniPeek network analyzer performs deep packet inspection DPI and can reconstruct all network activity, including e-mail and IM, as well as analyze VoIP and video traffic quality. #wp_scalability © WildPackets, Inc.
  • 40. A History of Innovation 2001 2005 2009 2011 • First 802.11 Combined distributed Innovative dashboard • Total visibility with wireless analyzer network and VoIP with drill-down for VoIP zero packet loss • First network network analysis and video • First wireless analyzer with network analyzer to automated expert support capture and analysis analysis of 802.11n 3-stream wireless 2003 2008 2010 2012 Distributed real-time Enterprise-wide First to achieve 11 Gbps • Capture, record, and troubleshooting Monitoring and Reporting sustained capture-to-disk analyze from 40G network segments • First wireless network analyzer to support 801.11ac, k, r, u, v, w #wp_scalability © WildPackets, Inc.
  • 41. Real-World Deployments Education Financial Government Health Care / Retail Telecom Technology WildPackets Proprietary #wp_scalability © WildPackets, Inc.
  • 42. Product Line Overview © WildPackets, Inc. www.wildpackets.com
  • 43. Omni Distributed Analysis Platform OmniPeek Enterprise Packet Capture, Decode and Analysis • Ethernet,1/10 Gigabit, 802.11, and voice and video over IP • Portable capture and OmniEngine console • Aggregate analysis data across multiple capture points Omnipliance / TimeLine Distributed Enterprise Network Forensics • High-performance packet capture and real-time analysis • Stream-to-disk for forensics analysis • Integrated OmniAdapter network analysis cards up to 40G WatchPoint Centralized Enterprise Network Monitoring Appliance • Aggregation and graphical display of network data • WildPackets OmniEngines • NetFlow and sFlow #wp_scalability © WildPackets, Inc.
  • 44. Omni Distributed Analysis Platform Software and Turnkey Solutions • Enterprise monitoring and reporting ‒ WatchPoint Server ‒ OmniFlow, NetFlow, and sFlow Collectors • Software probes and network recorders ‒ Omnipliance network recorders – Edge, Core ‒ TimeLine network recorders ‒ OmniAdapter analysis cards • Distributed analysis software ‒ OmniPeek – Enterprise, Professional, Basic, Connect ‒ OmniEngine – Enterprise, Desktop, OmniVirtual • Portable solutions ‒ OmniPeek network analyzer ‒ Omnipliance Portable #wp_scalability © WildPackets, Inc.
  • 45. Key New Features in v7 • 40G network support • Analyze issues from end to end: Multi-Segment Analysis (MSA) • Collect data from non-technical end users: OmniPeek Remote Assistant (ORA) • Single, interactive dashboard for utilization, top talkers, top protocols, latency, Experts, flows, and wireless signal strength • New wireless specifications ‒ 802.11ac 802.11k ‒ 802.11r 802.11u ‒ 802.11v 802.11w #wp_scalability © WildPackets, Inc.
  • 46. OmniPeek Network Analyzer • Distributed analysis manager – Connect to and configure distributed OmniEngines, Omnipliances, and TimeLines • Comprehensive dashboards present network traffic in real-time – Vital statistics and graphs display trends on network and application performance – Visual peer-map shows conversations and protocols – Intuitive drill-down for root-cause analysis of performance bottlenecks • Visual Expert diagnosis speeds problem resolution – Packet and payload visualizers provide business-centric views • Automated analytics and problem detection 24/7 – Easily create filters, triggers, scripting, advanced alarms, and alerts #wp_scalability © WildPackets, Inc.
  • 47. Omnipliance Network Recorders • Captures and analyzes all network traffic 24x7 – Runs WildPackets OmniEngine software probe – Generates vital statistics on network and application performance – Intuitive root-cause analysis of performance bottlenecks • Expert analysis speeds problem resolution – Fault analysis, statistical analysis, and independent notification • Multiple issue digital forensics – Real-time and post capture data mining for compliance and troubleshooting • Intelligent data transport – Network data analyzed locally – Detailed analysis passed to OmniPeek on demand – Summary statistics sent to WatchPoint for long term trending and reporting – Efficient use of network bandwidth • User-extensible platform – Plug-in architecture and SDK #wp_scalability © WildPackets, Inc.
  • 48. TimeLine Network Recorder • Continuous network recording and comprehensive real-time statistical display — simultaneously ‒ 12Gbps sustained capture with zero packet loss ‒ Network statistics display in TimeLine visualization format • Rapid, intuitive forensics search and retrieval ‒ Historical network traffic analysis and quick data rewinding ‒ Several pre-defined forensics search templates making searches easy and fast • A natural extension to the WildPackets product line • Turnkey bundled solution ‒ Appliance + OmniEngine, OmniAdapter, OmniPeek Connect #wp_scalability © WildPackets, Inc.
  • 49. WildPackets Network Recorders Price/Performance Solutions for Every Application Portable Edge Core TimeLine Ruggedized Small Networks Datacenter Workhorse Enterprise, Highly- Troubleshooting Remote Offices Easily Expandable Utilized Networks Aluminum chassis / 17” LCD 1U rack mountable chassis 3U rack mountable chassis 3U rack mountable chassis Dual 2.13 GHz Quad-Core Intel Quad-Core Intel Xeon X3460 Dual Intel Xeon Quad Core Dual Intel Xeon Quad Core Xeon L5630 "Westmere" 2.80Ghz E5530 2.4GHz X5560 2.8GHz 24GB RAM 4GB RAM 6GB RAM 18GB RAM 2 PCI-E Slots 2 PCI-E Slots 4 PCI-E Slots 4 PCI-E Slots 2 Built-in Ethernet Ports 2 Built-in Ethernet Ports 2 Built-in Ethernet Ports 2 Built-in Ethernet Ports 6TB SATA storage capacity 1TB SATA storage capacity 8/16TB SATA 8/16/32/48TB SATA storage capacity storage capacity 4.5Gbps CTD 1.1Gbps CTD 3Gbps CTD 12Gbps CTD #wp_scalability © WildPackets, Inc.
  • 50. WatchPoint Centralized Monitoring for Distributed Enterprise Networks • High-level, aggregated view of all network segments – Monitor per campus, per region, per country • Wide range of network data – NetFlow, sFlow, OmniFlow • Web-based, customizable network dashboards • Flexible detailed reports • Direct link to detailed, packet-based analysis #wp_scalability © WildPackets, Inc.
  • 51. Comprehensive Support and Services Standard Support Premier Support  Maintenance and upgrades  24 x 7 x 365  Telephone and email contacts  Dedicated escalation manager  Knowledgebase  2 customer contacts per site  MyPeek Portal  Plug-in reconfiguration assistance WildPackets Training Academy  Public, web-based, and on-site classes  Complete curriculum: technology and product focused  Practical applications and labs covering network analysis, wireless, VoIP monitoring and advanced troubleshooting Consulting and Custom Development Services  Deployment, configuration, and assessment engagement  Systems integration and testing  Application integration, driver, decode, interface development #wp_scalability © WildPackets, Inc.
  • 52. 24x7 Network Monitoring, Analysis, and Troubleshooting #wp_scalability © WildPackets, Inc.
  • 53. WildPackets Key Differentiators • Visual Expert intelligence with intuitive drill-down – Let computer do the hard work, and return results, real-time – Packet /payload visualization is faster than packet-per-packet diagnostics – Experts and analytics can be memorized and automated • Automated capture analytics – Filters, triggers, scripting, and advanced alarming system combine to provide automated network problem detection 24x7 • Multiple issue network forensics – Can be tracked by one or more people simultaneously – Real-time or post capture • User-extensible platform – Plug-in architecture and SDK • Aggregated network views and reporting – NetFlow, sFlow, and OmniFlow #wp_scalability © WildPackets, Inc.
  • 54. Thank You! WildPackets, Inc. 1340 Treat Boulevard, Suite 500 Walnut Creek, CA 94597 (925) 937-3200 © WildPackets, Inc. www.wildpackets.com