Security Load Balancer | Scalable Network Security
NoviFlow’s CyberMapper accelerates and dynamically scales cybersecurity services and virtualized network functions into the Terabit scale by implementing a powerful Security Load Balancer, packet filtering and telemetry solution that leverages is a high-performance programmable network fabrics. CyberMapper achieves unprecedented performance, flexibility, and scale by leveraging the power of programmable match-action pipelines, white-box hardware, and open standard interfaces such as OpenFlow, gRPC and P4-runtime.
CyberMapper enables NoviWare™ compatible switches (such as NoviFlow’s NoviSwitches and select white-box switches running the powerful Intel/Barefoot Tofino) to deliver load balancing, packet brokering, and telemetry directly in the network fabric in a simple, scalable, compact form factor, and at a fraction of the price of conventional load balancing solutions.
CyberMapper: High-Performance Security Load Balancer
Optional Feature: Dynamic In-Line Packet Broker Services
NoviFlow’s Dynamic In-line Packet Broker Services are an optional (separately licensed) extension to NoviFlow’s CyberMapper and thus inherit all the CyberMapper services.
NoviFlow’s Dynamic In-Line Packet Broker Services deliver optimized flow monitoring and acquisition functions without requiring the use of optical taps to duplicate packets on the main network and transmit them to a monitoring and analytics network. For ease of use and integration into existing brownfield networks, DIPB implements Tap and Filtering services via programmable SDN technology controlled through RESTful APIs. This virtualizes the entire process of traffic monitoring with a tap/filter, and eliminates the cost and time required to install physical tap hardware, enabling traffic to monitored dynamically whenever needed under the control of security or orchestration packages.
Below are the key services provided by the Packet Broker extensions to CyberMapper:
NoviFlow’s DIPB moves Packet Broker technology into the SDN world. For ease of use and integration into existing brownfield networks, these services are implemented and controlled via a RESTful API.
DIPB’s Multi-Tenant Port Pairs capability allows flows from multiple sources (tenants) to be processed by the same Tool Farm. This provides a significant reduction in cost per port.
Finally, DIPB comes with a web-based dashboard that presents the activity and allocation of the flow Load Balancing to the Tool Farm in real-time.