Azure. Google Cloud. IBM Cloud. Alibaba. CenturyLink. AWS. Any Cloud.
CloudLens is now the first visibility solution to support all leading cloud platforms, for both Windows and Linux!
How CloudLens Works
- Identify Instances
- Create a Project
- Define Groups
- Draw a Path
- Setup Filters
Using CloudLens is easy. The first step is to load Ixia sensors on the source instances, where you need packet visibility. With CloudLens Public's visibility ecosystem, tool instances, where the packets need to be delivered, are already setup to work with the sensors. The sensors and connectors are containerized and run on top of a Docker engine – The sensors and connectors send metadata information (e.g., Cloud service provider, region, AZ, kernel module, CPU and memory) to the SaaS management platform. Moreover, the sensor is also what filters data before sending it to tools.
In the SaaS management platform, create a “project” and use the project key generated to associate the sensors and connectors running in the source and tool instances, respectively, to the project. This allows the management platform to have complete context of where source instances and tool instances reside and in turn bring packet visibility from the source to tool instances.
In the SaaS management platform, create source groups and tool groups based on metadata ingested from the sensors and connectors; a natural classification system. The user also has the flexibility to create source groups and tools groups according to business objectives. In this example “Application Instances” are grouped together as “Source Group 1” and “Web Servers” are grouped together as “Source Group 2.”
Once groups are created, the relationship of source and tool instances can be established. Drag and drop a connection in the management platform to create a security visibility data path. This connection forwards packet data from source instances to tool instances through a secure peer-to-peer VPN tunnel, the secure visibility path, that originates in the source sensor and terminates in the tool.
You can create packet filters at the source instance to filter only relevant packet data that needs to be sent to your tools.
The work is done. Sit back with the peace of mind that you can now see what is happening in your public cloud environment.
INTERESTED IN CLOUDLENS? SUBMIT YOUR INFORMATION TO CONTACT SALES
Ixia works with leading security, APM and NPM tool providers, including open source providers, to pre-validate CloudLens interoperability direct from cloud. The tools of the cloud visibility ecosystem providers operate directly with CloudLens, without requiring data backhaul to a virtual machine or network packet broker, for a seamless experience and complete visibility into cloud environments.
Detect. Hunt. Prevent Threats.
Help your organization achieve complete network security visibility of threats with Bricata, and reduce complexity, dwell time, and time to containment.Learn More about Bricata
CA Technologies (NASDAQ:CA) creates software that fuels transformation for companies and enables them to seize the opportunities of the application economy. Software is at the heart of every business in every industry. From planning, to development, to management and security, CA is working with companies worldwide to change the way we live, transact, and communicate – across mobile, private and public cloud, distributed and mainframe environments.Learn More about CA Technologies
Corelight is the most powerful network visibility solution for information security professionals. We provide real-time data that organizations use to understand, detect, and prevent cyber attacks. Our solution is built on Bro, the powerful and widely-used open source monitoring framework created by our founders.Learn More about Corelight
Dynatrace is the innovator behind the industry's premier Digital Performance Platform, making real-time information about digital performance visible and actionable for everyone across business and IT. We help customers of all sizes see their applications and digital channels through the lens of their end users. More than 7,500 organizations use these insights to master complexity, gain operational agility and grow revenue by delivering amazing customer experiences.Learn More about Dynatrace
Eastwind offers the only breach analytics cloud that provides complete visibility of your key cyber terrain. We help analyze the flight data flowing across your corporate networks, virtual networks, cloud provider networks, cloud application networks, and your mobile workforce—with speed and precision. Always watching, our automated hunters enable you to identify malicious activity that evades all other security solutions.
Eastwind Networks is a select Ixia cloud partner who has bundled a complete security & monitoring solution with CloudLens. Simplified setup saves time and effort, and ensures seamless & complete data collection, visibility, and analytics.Learn More about Eastwind Networks
Empirix is the Leader in End-to-End Network Visibility and Test Automation for Telecommunications Service Providers and Contact Center Operations, DevOps and QA Professionals We provide testing software and services for regression, load testing and monitoring of Enterprise and call center technologiesLearn More about Empirix
eSentire Managed Detection and Response™ leads the industry in Managed Detection and Response services. We detect and mitigate cyber threats for mid-
FireEye has invented a purpose-built, virtual machine-based security platform that provides real-time threat protection to enterprises and governments worldwide against the next generation of cyber attacks. These highly sophisticated cyber attacks easily circumvent traditional signature-based defenses, such as next-generation firewalls, IPS, anti-virus, and gateways. The FireEye Threat Prevention Platform provides real-time, dynamic threat protection without the use of signatures to protect an organization across the primary threat vectors and across the different stages of an attack life cycle. The core of the FireEye platform is a virtual execution engine, complemented by dynamic threat intelligence, to identify and block cyber attacks in real time. FireEye has over 4,700 customers across 67 countries, including more than 730 of the Forbes Global 2000.Learn More about Fireeye
Flowmon Networks empowers businesses to manage and secure their computer networks confidently. Through our high performance network monitoring technology and lean-forward behavior analytics, IT pros worldwide benefit from absolute network traffic visibility to enhance network & application performance and deal with modern cyber threats. Driven by a passion for technology, we are leading the way of NetFlow/IPFIX network monitoring that is high performing, scalable and easy to use. The world’s largest businesses, internet service providers, government entities or even small and midsize companies rely on our solutions to take control over their networks, keep order and overcome uncertainty.Learn More about Flowmon
JASK is purpose-built to accelerate security operations
Attack surfaces are expanding. The perimeters of growing companies continuously shift. And the pace of new weaponization is unrelenting. In this environment, efficacy depends on speed. But traditional security operations technology is a speed barrier. Heavy and difficult to change, it delivers more noise than signal, overwhelming analyst resources and clogging security operations. Enter JASK.Learn More about Jask
LogRhythm, a leader in security intelligence and analytics, empowers organizations around the globe to rapidly detect, respond to and neutralize damaging cyber threats. The company’s patented award-winning platform uniquely unifies next-generation SIEM, log management, network and endpoint monitoring, and advanced security analytics. In addition to protecting customers from the risks associated with cyber threats, LogRhythm provides unparalleled compliance automation and assurance, and enhanced IT intelligence.Learn More about LogRhythm
Moloch is a large scale, open source, full packet capturing, indexing, and database system.
Moloch augments your current security infrastructure by storing and indexing network traffic in standard PCAP format, while also providing fast indexed access. Moloch is not meant to replace Intrusion Detection Systems (IDS), instead it provides more visibility. Moloch is built with an intuitive UI/UX which reduces the analysis time of suspected incidents.Learn More about Moloch
Perch Security is the first Community Defense Platform. Perch makes threat intelligence accessible and affordable for the "everyone else" – organizations who don't have dedicated threat analyst teams. Now small and mid-size businesses can mount a cyber defense with curated community intelligence and participate with the sharing community; all without a SIEM, a TIP, or increasing staff. Perch is headquartered in Tampa, Florida.Learn More about Perch Security
ProtectWise shifts network security to the cloud to provide complete visibility and detection of enterprise threats and accelerated incident response. By harnessing the power of the cloud, the ProtectWise Grid™ has the unique ability to create an unlimited retention window with full-fidelity forensics, automated retrospection and advanced visualization — all with the ease and cost-savings of an on-demand deployment model. Security professionals can see threats in real-time and continuously goes back in time to discover previously unknown threats automatically.Learn More about Protectwise
In today’s world, digital performance defines business success. But performance in the digital age is about more than speed. That’s why Riverbed provides a fully unified and integrated platform that eliminates tradeoffs and helps customers rethink possible. We help enhance digital performance across every aspect of a customer’s business—whether that’s gaining insight into new customers and industries, improving time to market, increasing productivity, or simply delivering fast, secure digital experiences today’s users demand. The Riverbed Digital Performance Platform helps transform the way customers run the powerful network- and cloud-based apps that connect people, businesses, and experiences in our digital world.Learn More about Riverbed
RSA provides more than 30,000 customers around the world with the essential security capabilities to protect their most valuable assets from cyber threats. With RSA’s award-winning products, organizations effectively detect, investigate, and respond to advanced attacks; confirm and manage identities; and ultimately, reduce IP theft, fraud, and cybercrime.
- RSA NetWitness – Ixia CloudLens vTap Integration Guide
- RSA NetWitness – Ixia Vision Network Packet Broker Integration Guide
- RSA NetWitness – Ixia AWS CloudLens Integration Guide
Savvius offers a range of powerful software and hardware products that automate the collection of critical network data for network forensics in security investigations and for network and application performance diagnostics. Savvius and Ixia have partnered to bring full visibility, performance, scalability, and decryption to our enterprise customers with high-speed networks. The joint solution provides accurate time-stamping, SSL decryption, de-duplication, filtering, and load-balancing across multiple Savvius appliances.Learn More about Savvius
Sinefa provides visibility and control for data networks. It allows network managers to see all the applications, users, devices, and links on the network, and to easily redirect bandwidth to critical applications. Increased network performance boosts productivity, eases user frustration and reduces network management costs. Sinefa is the simplest solution on the market, providing immediate total visibility and control that saves users and managers time.Learn More about Sinefa
Suricata is a free and open source, mature, fast and robust network threat detection engine. The Suricata engine is capable of real time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM) and offline packet capture (pcap) processing.Learn More about Suricata
Viavi (NASDAQ: VIAV) software and hardware platforms and instruments deliver end-to-end visibility across physical, virtual and hybrid networks. Precise intelligence and actionable insight from across the network ecosystem optimizes the service experience for increased customer loyalty, greater profitability and quicker transitions to next-generation technologies. Viavi is also a leader in anti-counterfeiting solutions for currency authentication and high-value optical components and instruments for diverse government and commercial applications.Learn More about Viavi Solutions
VoIPmonitor is an open source network packet sniffer with commercial frontend for SIP RTP RTCP and SKINNY(SCCP) VoIP protocols running on linux. VoIPmonitor is designed to analyze quality of VoIP call based on network parameters - delay variation and packet loss according to ITU-T G.107 E-model which predicts quality on MOS scale.Learn More about VoIP Monitor
Wireshark is the world's foremost network protocol analyzer. It lets you see what's happening on your network at a microscopic level. It is the de facto (and often de jure) standard across many industries and educational institutions. Wireshark development thrives thanks to the contributions of networking experts across the globe. It is the continuation of a project that started in 1998.Learn More about Wireshark