AZURE、GOOGLE CLOUD、IBM CLOUD、ALIBABA、CENTURYLINK、 AWS及任意云。

CloudLens是目前首个支持所有领先云平台的可视化解决方案,Windows与Linux皆兼容!

如今,即使一般不涉及技术的企业机构都正在迁移至云端。而且,该趋势正日渐高涨,这是因为云端能提供更大灵活性和敏捷性。在这种大规模迁移背景下,各企业机构需要管理更多的网络分段并且面临更多的潜在网络盲点。无论基础架构和应用程序安放在何处,安全性和合规性都是永恒的话题。各企业机构发现,传统网络可视性解决方案无法满足它们对于云端数据可视性的需求。

CloudLens™是Ixia为了交付公有云、私有云和混合云可视性而推出的平台,以解决云端内精细数据访问的挑战。CloudLens是首个网络级解决方案,通过软件即服务(SaaS)提供可视性即服务(VaaS)。此外,它也是业内首个独立于云端服务供应商的可视性平台。

CLOUDLENS

  • 支持所有云端平台,包括亚马逊云服务(AWS)、微软Azure、IBM BlueMix、谷歌云平台以及Window和Linux操作系统;
  • 弹性按需扩展——以便可视性随着监控实例以及需要监控的实例集群横向自动扩展;
  • 以服务形式交付,自动管理云端可视性——无需更改架构;
  • 消除手动配置,减少误差;
  • 提供拖放界面,便于使用和设置;
  • 过滤源码实例中的数据包来减少工具带宽,消除多余流量,保证工具最佳运行。

马上点击“免费试用”或提交您的信息与我们的销售联系

全面云端可视性

  • 任意云端可视性
  • 弹性扩展
  • 按需付费定价
  • 云原生设计
  • 云端可视性生态系统
  • Service Provider Agnostic

    无需云服务供应商支持

    CloudLens是首个独立于服务供应商的可视性平台,可访问亚马逊云服务(AWS)、Microsoft Azure、IBM Bluemix、谷歌云平台、Alibaba Cloud、CenturyLink云端等的数据包数据;此外,该平台还支持Window和Linux环境。

    CloudLens提供可直接访问实例数据的单一网络层,并在云端过滤数据,然后将其直接发送至安全和监控工具。它实现了极大的灵活性,来自任意云端的数据都可以被传递至任何其他云端或数据中心的安全和监控工具。由于能在单一平台和界面中进行管理,网络管理员的管理和配置工作被大大简化,从而降低了误差并确保安全和监控工具足够的可视性。

  • Elastic Scale

    按需弹性扩展

    CloudLens解决了捕获和过滤公有云中流量这一挑战,因为它可以随着实例的创建和销毁横向扩展。

    CloudLens采用来自云平台实例的元数据并将其分门别类;因为元数据原本就存在于每一个新建实例中,该平台顺理成章地知道如何处理以及需要运用哪种安全和监控政策。因此,来自实例的流量将被适当过滤,并被传递给安全和监控工具,而无需人工干预。凭借安全和监控工具合作伙伴生态系统,CloudLens确保工具实例也能扩展。自动扩展解决方案能够消除管理负担,节省时间和成本。此外,它还可减少手动配置常有的错误风险。经测试,CloudLens可支持成千上万的应用实例。

  • Per per Use Pricing

    高性价比的云端可视性

    CloudLens遵循着各企业机构迁移至云端的核心原则和动力之一:不必臆测峰值扩展的规模,同时优化资源分配和成本控制的方式。

    正如云端根据应用或系统负载进行扩展,CloudLens也能随着工作量实例而不断扩大,当创建或撤消实例时按需增加可视性,而无需任何架构变化。这种扩展意味着您只使用所需的功能,因此,只需按照实际使用而付费。此外,CloudLens还可以减少失误,因为不会存在误选峰值需求或添加实例缺失的情况——从而经济高效地确保了充分的可视性。

  • Cloud-Native Design

    云原生无服务器的设计

    Ixia的CloudLens可以自动扩展并且独立于云端服务供应商,因为它建立于云端之上。在其核心有一个隐含的微服务架构,该架构通过API的一个无服务器设计进行编排。正是这种云原生特征使得平台可以扩展,因此它能够满足跨技术平台的高可用性和可扩展服务的云需求。

    CloudLens公共版有两个核心组件:

    • 一个软件即服务(SaaS)可视性管理平台。这是用户可以配置可视性和定义过滤的地方。
    • 传感器和连接器:分别位于源实例和工具实例中的软件。传感器和连接器是CloudLens如何访问元数据,因为他们位于实例中。他们包括Docker容器版本或基于代理的版本。

    具有云原生特征的意义何在以及为何重要

  • Cloud Visibility Ecosystem

    云端可视性系统

    Ixia公司提供一个技术合作伙伴的云端可视性生态系统,这些合作伙伴经过预验证,从而直接接收来自云端中CloudLens的数据。这提供了管理灵活性,并且可以在不需要时取消回传数据的需求。

    总的来说,广泛的利益相关者可以利用CloudLens向他们支持业务的基于数据包的工具馈送数据。合规和安全团队可以部署安全工具,例如数据防泄漏(DLP)系统和入侵防御系统(IPS)。应用程序的所有者可以部署应用程序性能管理(APM)和性能监控器。DevOps团队可以部署故障排除和分析工具。数据可以发送到基于云端的工具以及物理安全和监控工具。 查看Ixia公司的技术合作伙伴的完整列表。

只需一个简单拖放界面,全部搞定!

Ixia的产品一如既往的便捷易用。CloudLens提供一个直观的拖放界面,左侧显示源实例,右侧显示工具实例——非常便于您了解网络数据流。

CloudLens Drag and Drop GUI

CLOUDLENS的工作方式

  • 识别实例
  • 创建项目
  • 定义分组
  • 绘制路径
  • 设置过滤器
  • 监控
  • Source and Tool Instances

    CloudLens的使用十分方便。首先,在需要数据包可视性的源实例上加载Ixia传感器。在CloudLens可视性生态系统里,需要交付数据包的安全和监控工具实例已配备了连接器,以接收来自传感器的数据。

    传感器和连接器将元数据信息(如:云服务供应商、区域、AZ、内核模块、CPU和内存)发送到软件即服务(SaaS)管理平台。传感器具有双重功能;它还能过滤数据包数据,然后再将其直接发送到各个工具。如有需要,CloudLens可灵活地将数据传递给CloudLens虚拟数据包处理器(虚拟机),随后将其发送至物理安全和监控工具或网络数据包中转设备。

  • Create Project

    在软件即服务管理平台中,创建一个“项目”,并使用生成的项目关键字将在源实例和工具实例中运行的传感器和连接器分别与该项目进行关联。这使管理平台具有完整的环境,源实例和工具实例驻留于此,从而相应地将来自源实例的数据包可视性扩展到工具实例。

  • Define Groups

    在软件即服务管理平台中,根据从传感器和连接器获取的元数据创建源码组和工具组;一个自然分类系统。此外,用户还可以灵活地根据业务目标创建源码组和工具组。在这个示例中,“应用程序实例”作为“源码组1”被归为一组,以及“Web服务器”作为“源码组2” 被归为一组。

  • Draw a Path

    创建组后,可以建立源实例和工具实例的关系。在管理平台中拖放连接以创建一个安全可视性数据路径。此连接通过安全的点对点VPN隧道将来自源实例的数据包数据转发到工具实例,该隧道是安全的可视性路径,源于源传感器并终止于工具中。

  • Filtering Screenshot

    您可以在源实例中创建数据包过滤器,以过滤只需要发送到您工具中的相关数据包数据。

  • Monitor

    工作完成了。您现在可以安心并轻松地看到在您的云环境中正在发生的事情。

‘‘

“我们很高兴能与Ixia合作部署全新CloudLens平台,从而将FireEye业界领先的可视性与响应速度扩展至AWS、Azure及其它公有云。我们通过FireEye Helix致力于简化、集成并自动处理客户的安全运营,并将可扩展的原生可视性融入所有云服务、网络、端点和第三方安全产品之中,以抢先满足我们的客户需求。”

——FireEye首席技术官Martin Holste
‘‘

Ixia CloudLens Public专为云端设计和打造,因此它本身就具有弹性和可扩展性。CloudLens Public为CA公司的网络监控解决方案提供监控端到端响应时间所需的可视性,以跟踪并优化用户体验,无论应用程序部署在何处。

——Sushil Kumar,CA公司产品管理和战略、敏捷运维高级副总裁
‘‘

Ixia推出的CloudLens Public在亚马逊云服务(AWS)中提供全面可视性,从而让Dynatrace数据中心真实用户监测的客户能够监控和改善关键业务SAP、Citrix和Oracle等应用程序的体验。

——Steve Tack,Dynatrace公司产品管理高级副总裁
‘‘

将企业工作量转移到云端可能会对安全团队造成障碍,因为他们不再拥有有效的网络数据包可视性。Ixia的CloudLens Public可在公有云中提供全面、便捷和高度可扩展的可视性,从而让这一问题迎刃而解。Ixia与ProtectWise的联合解决方案能实现自动威胁检测和无限取证搜索。

——Ramon Peypoch,ProtectWise公司首席产品官
‘‘

作为在AWS中托管的基于SaaS的大型性能管理解决方案供应商,AppNeta深知从公有云中获得可行的数据包级可视性所带来的挑战。我们发现CloudLens Public如同我们的产品一样可以多租户自助模式进行扩展,以满足公有云客户的弹性需求,这与我们考查过的其他解决方案截然不同,CloudLens Public运行良好并且开销最少。借助CloudLens Public,只需几分钟就能在公有云中部署监控解决方案,而不必耗费数小时或者数天时间。

——Sean Armstrong,AppNeta公司产品副总裁
‘‘

NetFort LANGuardian软件下载保证用户可以在几分钟内获得网络和远程站点或数据中心上用户活动的实时粒度可视性。Ixia的CloudLens Public进一步拓展了此项功能,以保证云端不再是一个盲点。Ixia与NetFort强强联合以确保各企业机构始终能从单一的控制台统一查看周围环境,该控制台提供实时可视性、元数据和环境,从而在其虚拟网络、物理网络与云端网络之间更快检测和响应。

——Morgan Doyle,NetFort公司首席技术官
‘‘

将可行的网络取证扩展到云端既困难重重又非常重要。凭借Ixia的CloudLens Public,Savvius能够以可扩展、弹性且可靠的方式将云端功能扩展到Omnipeek和Omnipliance。

——Nadeem Zahid,Savvius公司业务发展高级总监
‘‘

公有云解决方案仍在快速普及。在这种情况下,各企业机构应如何确保其数据和应用的安全性和完整性成为一种独特而重大的挑战。Ixia的CloudLens Public解决方案解决了这个至关重要的问题,在云环境之中和之间访问网络流量,从而让LogRhythm网络监控器等解决方案能够围绕云端工作量执行深度数据包检测、提取丰富的元数据、开展分析和捕获完整的数据包。LogRhythm与Ixia的CloudLens Public共同为我们的客户提供了必要的可视性以及威胁检测功能,从而为其迁移到云端逐步树立信心。

——Matt Winter,LogRhythm公司业务开发副总裁
‘‘

由于各企业机构已将应用程序迁移到云端,因此越来越难以有效获取关于这些应用的利用率和完整性的深度分析所需的数据包。Ixia的CloudLens Public为有效从云端托管实例中收集数据包提供了可扩展并且灵活的方法。该解决方案现已经过验证,可与流量分析工具一同使用。

——Luca Deri,NTOP公司创始人
云端可视性生态系统

Ixia与领先的安全、APM和NPM工具供应商合作(其中包括开放源代码供应商),以从云端直接预先验证CloudLens的互操作性。云端可视性生态系统供应商的工具与CloudLens直接操作,无需将数据回传到虚拟机或网络数据包中转设备,从而实现无缝体验和云环境的全面可视性。

点击查看Ixia技术合作伙伴的完整列表.

AppNeta Logo

Appneta's award-winning suite of application performance management tools ensure optimized web app, SaaS app and end-user monitoring

Learn More about AppNeta
Bro Logo

Bro is an open source network security platform that illuminates your network's activity in detail, with the stability and flexibility for production deployment at scale.

Learn More about Bro
CA technologies

CA Technologies (NASDAQ:CA) creates software that fuels transformation for companies and enables them to seize the opportunities of the application economy. Software is at the heart of every business in every industry. From planning, to development, to management and security, CA is working with companies worldwide to change the way we live, transact, and communicate – across mobile, private and public cloud, distributed and mainframe environments.

Learn More about CA Technologies
Dynatrace

Dynatrace is the innovator behind the industry's premier Digital Performance Platform, making real-time information about digital performance visible and actionable for everyone across business and IT. We help customers of all sizes see their applications and digital channels through the lens of their end users. More than 7,500 organizations use these insights to master complexity, gain operational agility and grow revenue by delivering amazing customer experiences.

Learn More about Dynatrace
Eastwind Networks

Eastwind offers the only breach analytics cloud that provides complete visibility of your key cyber terrain. We help analyze the flight data flowing across your corporate networks, virtual networks, cloud provider networks, cloud application networks, and your mobile workforce—with speed and precision. Always watching, our automated hunters enable you to identify malicious activity that evades all other security solutions.

Eastwind Networks is a select Ixia cloud partner who has bundled a complete security & monitoring solution with CloudLens. Simplified setup saves time and effort, and ensures seamless & complete data collection, visibility, and analytics. 

Learn More about Eastwind Networks
Fireeye

FireEye has invented a purpose-built, virtual machine-based security platform that provides real-time threat protection to enterprises and governments worldwide against the next generation of cyber attacks. These highly sophisticated cyber attacks easily circumvent traditional signature-based defenses, such as next-generation firewalls, IPS, anti-virus, and gateways. The FireEye Threat Prevention Platform provides real-time, dynamic threat protection without the use of signatures to protect an organization across the primary threat vectors and across the different stages of an attack life cycle. The core of the FireEye platform is a virtual execution engine, complemented by dynamic threat intelligence, to identify and block cyber attacks in real time. FireEye has over 4,700 customers across 67 countries, including more than 730 of the Forbes Global 2000.

Security – joint with FireEye

Learn More about Fireeye
Jask

JASK is purpose-built to accelerate security operations

Attack surfaces are expanding. The perimeters of growing companies continuously shift. And the pace of new weaponization is unrelenting. In this environment, efficacy depends on speed. But traditional security operations technology is a speed barrier. Heavy and difficult to change, it delivers more noise than signal, overwhelming analyst resources and clogging security operations. Enter JASK.

Learn More about Jask
LogRhythm

LogRhythm, a leader in security intelligence and analytics, empowers organizations around the globe to rapidly detect, respond to and neutralize damaging cyber threats. The company’s patented award-winning platform uniquely unifies next-generation SIEM, log management, network and endpoint monitoring, and advanced security analytics. In addition to protecting customers from the risks associated with cyber threats, LogRhythm provides unparalleled compliance automation and assurance, and enhanced IT intelligence.

Learn More about LogRhythm
Morphick Logo

Morphick provides security Managed Detection and Response (MDR) services to organizations globally. Morphick’s proven approach combines attack detection, threat hunting, incident response, and tailored threat intelligence to deliver morphing defensive postures. Organizations can also leverage Morphick’s NSA CIRA-Accredited Incident Response services for breach response support. Morphick provides threat intelligence for deep intelligence gathering and analysis, and other incident response services such as malware reverse engineering and customer signature development.

Learn More about Morphick
Netfort Logo

NetFort LANGuardian is the industry's leading deep packet inspection software for monitoring, troubleshooting, and reporting on user and network activity.

Learn More about Netfort
NTOP Logo

ntopng is the next generation version of the original ntop, a network traffic probe that shows the network usage, similar to what the popular top Unix command does.

Learn More about NTOP
Perch Security

Perch Security is the first Community Defense Platform. Perch makes threat intelligence accessible and affordable for the "everyone else" – organizations who don't have dedicated threat analyst teams. Now small and mid-size businesses can mount a cyber defense with curated community intelligence and participate with the sharing community; all without a SIEM, a TIP, or increasing staff. Perch is headquartered in Tampa, Florida. 

Learn More about Perch Security
Protectwise

ProtectWise shifts network security to the cloud to provide complete visibility and detection of enterprise threats and accelerated incident response. By harnessing the power of the cloud, the ProtectWise Grid™ has the unique ability to create an unlimited retention window with full-fidelity forensics, automated retrospection and advanced visualization — all with the ease and cost-savings of an on-demand deployment model. Security professionals can see threats in real-time and continuously goes back in time to discover previously unknown threats automatically.

Learn More about Protectwise
RSA Security

RSA provides more than 30,000 customers around the world with the essential security capabilities to protect their most valuable assets from cyber threats.  With RSA’s award-winning products, organizations effectively detect, investigate, and respond to advanced attacks; confirm and manage identities; and ultimately, reduce IP theft, fraud, and cybercrime.

Learn More about RSA
Savvius

Savvius offers a range of powerful software and hardware products that automate the collection of critical network data for network forensics in security investigations and for network and application performance diagnostics. Savvius and Ixia have partnered to bring full visibility, performance, scalability, and decryption to our enterprise customers with high-speed networks. The joint solution provides accurate time-stamping, SSL decryption, de-duplication, filtering, and load-balancing across multiple Savvius appliances.

Learn More about Savvius
Sinefa

Sinefa provides visibility and control for data networks. It allows network managers to see all the applications, users, devices, and links on the network, and to easily redirect bandwidth to critical applications. Increased network performance boosts productivity, eases user frustration and reduces network management costs. Sinefa is the simplest solution on the market, providing immediate total visibility and control that saves users and managers time.

Learn More about Sinefa
Suricata Logo

Suricata is a free and open source, mature, fast and robust network threat detection engine. The Suricata engine is capable of real time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM) and offline packet capture (pcap) processing.

Learn More about Suricata
VoIP Monitor

VoIPmonitor is an open source network packet sniffer with commercial frontend for SIP RTP RTCP and SKINNY(SCCP) VoIP protocols running on linux. VoIPmonitor is designed to analyze quality of VoIP call based on network parameters - delay variation and packet loss according to ITU-T G.107 E-model which predicts quality on MOS scale.

Learn More about VoIP Monitor
Wireshark

Wireshark is the world's foremost network protocol analyzer. It lets you see what's happening on your network at a microscopic level. It is the de facto (and often de jure) standard across many industries and educational institutions.  Wireshark development thrives thanks to the contributions of networking experts across the globe. It is the continuation of a project that started in 1998.

Learn More about Wireshark