Home » 100% Packet Capture » Deployment

Every network needs a packet capture fabric

To secure, monitor, analyse and protect your network,
you need the power to see all everywhere

Deploying a high-performance packet capture 'fabric'

Reliable network monitoring, security and analysis depends upon 100% reliable capture, timestamping and recording of network traffic. To do this efficiently we believe that organisations need to deploy a layer or ‘fabric’ of passive, packet capture Probes over the top of their operational networks. Our "fabric" gives you the power to see all across your whole network.

The fabric is responsible for capturing, time-stamping and recording everything that happens on the network and making the data available to the network applications that need it – such as IDS, Analytics, Lawful Intercept etc.

Elements of a packet capture fabric

Deploying a packet capture fabric on top of a distributed network involves a number of different elements to be woven into the fabric. All of the elements that we have developed are scalable, resilient and highly cost effective.

An Endace Packet Capture Fabric consists of:

  • Endace Probes - with up to 20 GigE ports on a single Probe and up to 32TB of storage, Endace Probes are highly cost effective and powerful monitoring engines. Our Probes are built on our 5-layer Probe architecture - guaranteed to give you the power to see all.
  • Centralised Probe Management - for multi-Probe deployments a fabric manager, running on its own dedicated server, provides management of your entire fabric of Probes - and the applications running on them - from a central location.
  • Applications - network applications running on Probes and consuming captured packet data.

Watch the animated diagram to see how our fabric seamlessly overlays your existing network >>

How Endace delivers the power to see all in 3 steps

Benefits of deploying an integrated packet capture fabric

By deploying a separate fabric of Probes right across your network from the edge to the core you are able to:

  • Consolidate your security and monitoring architectures, thus winning back scarce rack space
  • Rationalise the number of systems in use, without compromising on performance
  • Benefit from rich integration between applications that can share the same captured packet data source
  • Deploy new packet-based systems that create new value quickly and efficiently without deploying any new hardware
  • Benefit from a community of organisations, ISV's, Open Source communities thinking the same way