Data Sheets

nGenius Decryption Appliance

NETSCOUT Product Data Sheets

Issue link: https://read.uberflip.com/i/1324693

Contents of this Issue

Navigation

Page 0 of 2

N E T S C O U T l DATA SHEET l nDA-2725 | 4-Port 1/10 GbE SFP/SFP+ nDA-4835 | 8-Port 1/10 GbE SFP/SFP+ HIGHLIGHTS • 4 and 8 port models for 10 Gbps, 20 Gbps and 40 Gbps bidirectional traffic – Two or four 1/10Gbps network ports – Plus, two or four 10Gbps monitoring tool ports • Passive (out of band) and active (inline) deployment options with nGenius ® Packet Flow Switches chaining multiple service assurance and security tools • SSL/TLS encryption and decryption for SSL 3.0, TLS 1.0, TLS 1.1, TLS 1.2, and TLS 1.3 and SSH • Supports encryption keys of different types: – Static and ephemeral (dynamic) – Symmetrical and asymmetrical • Supports multiple hashing algorithms • Management via CLI and Web UI • Policy based selection decryption • FIPS Level 1 support nGenius Decryption Appliance In an effort to ensure privacy and security of data, encryption of network traffic is often a common practice. SSL/TLS has become the dominant stream-oriented encryption protocol and now constitutes a significant and growing percentage of traffic in the enterprise LAN and WAN, as well as throughout service provider networks. It has proven popular as it is easily deployed by software vendors, while offering privacy and integrity protection. The nGenius Decryption Appliance (nDA) enables encrypted traffic inspection of SSL/TLS while not compromising the use of SSL/TLS or reducing performance. It is deployed as a transparent inline bump-in-the-wire (BITW) device, enabling it to be used in L2 or L3 environments without having to re-architect networks or configure client devices to explicitly send traffic to proxies. In this mode, the nDA feeds decrypted traffic to inline or passive service assurance and security tools. Alternatively, nDA can be deployed as a passive out of band appliance to decrypt and feed traffic to passively attached service assurance and security tools. When combined with the NETSCOUT ® nGenius Packet Flow Switches (PFS), service chains comprised of multiple inline or passive tools can also be created. Active Monitoring nDA for Inline Security Tool Inline Security Tool Encrypted Encrypted nGenius Decryption Appliance Client Server Active Monitoring nDA for Passive Security Tool Passive Security Tool Encrypted Encrypted nGenius Decryption Appliance Client Server Passive Monitoring nDA for Passive Security Tool Passive Security Tool Encrypted Encrypted TAP Client Server nGenius Decryption Appliance Plain Text Plain Text Plain Text Figure 1: nGenius Decryption Appliance deployed with passive and active security tools.

Articles in this issue

Links on this page

view archives of Data Sheets - nGenius Decryption Appliance