Products

P-Series Overview

High Performance Traffic Inspection, Monitoring, and Capture at 10 Gbps

The Force10 P-Series 10 Gigabit inspection appliance is the first to deliver comprehensive deep packet inspection for line-rate 10 Gigabit per second applications. Based on patented Dynamic Parallel Inspection (DPI) technology, the P-Series uses an innovative, new processing architecture to simultaneously apply thousands of rules to each packet. Through the use of an FPGA-based rule engine, the P-Series can also dynamically reprogram hardware rules to deliver predictable performance and total signature flexibility under all traffic conditions.

Using an open framework, the P-Series supports Open Source and customizable network monitoring applications, enabling users to specify capture and filtering policies from public domain signatures, standard network monitoring libraries, or user-defined custom rule bases.

Key P-Series Applications

• High speed programmable network probe delivers inspection and flexible capture rules for lawfully authorized electronic surveillance and CALEA applications
• 10 Gigabit stateful filtering applications
• Pre-processing and filtering capabilities to scale existing solutions to 10 Gigabit performance in the core or at the WAN edge
• Open application program interface for creating custom monitoring, packet capture, and network security applications

Key P-Series Features

• Line-rate 10 Gbps deep packet inspection with support for jumbo frames
• Predictable performance regardless of traffic conditions or number of rules
• Support for both active inline or passive monitor/capture deployments
• Dynamically write rules directly into hardware for greater flexibility in responding to malicious traffic

Performance

The P-Series runs at full line-rate for 10 GbE network links with full deep-packet inspection and stateful signatures/policies enabled.

Predictable Performance

As a pure hardware-based inspection system, the P-Series is inherently 100% predictable in how operations are performed and always compiles a rule base that runs at line-rate. This leads to identical performance, throughput, and latency under any traffic load, and with any number of rules applied.

Management

Text-based rule management screen that enables users to:

• Start and stop the interface; turn each rule on and off
• Manage runtime parameters such as packet truncation, flow length, and timeout
• Set capture/ignore and block/forward policies for each rule

Web-based Node Manager with support for:

• Rule and image management
• Traffic monitoring
• System status and health monitoring

Intergration with Sguil, an Open Source network security monitoring and reporting system that provides the ability to:

• Collect, monitor, and correlate security events/alerts in the network
• Analyze security events based on context
• Categorize and escalate events for intrusion response decisions

 

P-Series Specifications

[+|-] P-Series Product Matrix

 

•  
• 
  P10

• Interfaces
• Two line-rate 10 GbE XFP sensing ports
  Two line-rate GbE SFP mirroring ports

• Inspection Throughput
• 20 Gbps from 64 Byte to 9,000+ byte frames per system

• Inspection Rate
• 14,880,952 pps per port

• Maximum Latency
• <2 microseconds

• Number of Flows
• 8,000,000 per system

• Capture Rate
• 1,000,000 pps per system

• Full Header, Payload Inspection
• IPv4

• Power
• 100 - 240 VAC

• Management
• 2 10/100Base-T management ports
  1 RJ-45 console port

• Height
• 1 Rack Unit

[+|-] RoHS Compliance

 

Response & Status Regarding European Union ‘RoHS’ Directive Requirements

As of July 1, 2006, products placed on the European Market by Force10 will be compliant. As permitted by EU and national laws, customers in countries where the EU RoHS directive is not in effect may receive pre-RoHS products until a later date. Force10’s RoHS program has made significant progress:

• All components have been assessed for compliance.
• Technical issues resulting from conversion to compliant materials have been resolved.
• Contract Manufacturers are converting to compliant-only parts.

Lead Free Program

RoHS permits the use of lead-in-solder for network infrastructure products while the industry identifies and develops reliable lead-free solder alternatives. All of Force10’s products qualify for the lead-in-solder exemption.

Force10 RoHS Compliance Program Methodology

Force10 is exercising its right to self declare for RoHS compliance and has extended that option to its suppliers. Force10 will periodically survey our suppliers to ensure the accuracy of supplier data.

Force10’s component-level method for achieving compliance with RoHS requirements:

• Is optimized to minimize technical risk associated with a component,
• Will result in products that meet or exceed current performance and quality specifications,
• Will preserve existing orderable product numbers,
• Should not result in changes to system-level form, fit or function,
• Should not require requalification, and
• Should not result in prematurely decommissioned products solely due to RoHS.

Service Replacement

Customers who purchase RoHS-compliant equipment from Force10 after July 1, 2006 with i) a valid Force10 service and support contract and ii) a valid service, support or warranty claim-- will receive RoHS complaint equipment if a replacement is deemed necessary according to Force10’s standard service, support and warranty procedures and through the standard Force10 RMA procedures.

Ordering Information

• Order Number
• Description

• PB-10GE-2P
  
  
  
• P10 2-port 10 GbE inspection and monitoring appliance with two 10 GbE XFP sensing and two GbE SFP mirroring ports

• SW-P-SDK
  
• P-Series security rules optimization software

• Optics
  
• See Optics Specifications for more details.