Solera OS 4.0 Solera OS is a specialized and optimized operating system specifically architected for the rigors and mission-critical nature of high-speed network forensics, including network traffic capture, indexing, and storage. It is the foundation for Solera Networks' comprehensive network forensics platform. Solera OS reads network packets to memory, then streams that data to storage in a proprietary file system, which permits complete capture and accuracy on today's high-speed networks, even 10Gb, as certified by Miercom. Download the whitepaper: "Unveiling the Security Illusion: The Need For Active Network Forensics"

As a software-based forensics platform, Solera OS provides very flexible methods to access the captured data using Solera DeepSee Forensics Suite or any other open source, third-party or custom built network management, monitoring or forensics application. Solera OS is extremely flexible in both portability and integration. It is the power behind the award-winning Solera DS appliances–dedicated capture appliances tuned for optimal performance. Solera OS is also available in a Virtual Appliance running on VMware™, providing easy deployment in any network environment and complete visibility into all virtual network traffic.

Solera OS is powerful and flexible enough to capture traffic at 10Gbps with microsecond time-stamping granularity and is capable of addressing very large storage partitions when combined with DS Storage. As hardware capture speeds increase and storage capabilities expand in the future, the Solera OS scales to take advantage of those improvements.

DS File System

The core of Solera OS is the DS File System (DSFS), a proprietary file system optimized for high-speed network packet capture, storage and playback. DSFS implements proprietary disk management, a virtual file system (VFS), management of capture on multiple interfaces and services for regenerating packets to external network segments, among other things.

Intuitive User Interface

Solera OS is accessed using an intuitive user interface that lets you:

• Select, start and stop capture and regeneration of captured traffic
• Create and apply filters to the network data stream before capture or upon replay
• View graphical and numerical status of key system metrics
• Access Solera DeepSee Forensics Suite for web-like searching, navigation and reconstruction of any captured traffic
• Navigate and download PCAP files or PCAP header files of stored network data
• Create custom PCAP files selected by date-time or file size from the stored data
• Manage network configuration
• Add users and manage user rights

Through an extensive REST API web services library, captured network traffic can be integrated with a myriad of forensics and network analysis tools and appliances, giving context to alerts and meaning to network incidents. Playback and PCAP generation allows you to send traffic directly to other tools that can't keep up with network speeds or to analyze specific periods of network traffic.

Solera DeepSee Forensics Suite™

DeepSee Forensics Suite presents traffic for analysis and forensics. DeepSee has the ability to index, search and reconstruct all network traffic into meaningful flows, including network artifacts. Through the intuitive search function in DeepSee Search™, IT and business users alike can search for email threads, IM dialogue, Microsoft Word documents, browser sessions, keywords, VPN sessions, etc. In-depth packet analysis skills are not needed to uncover and replay meaningful network activities.

Features in Solera OS 4.0 Include:

• New 64-bit operating system for improved performance on Solera DS Appliances
• New Graphical User Interface (GUI) with improved performance and visualization tools
• Packet filtering using new standards-based filtering language and new filter wizard

The Solera DeepSee Forensics Suite that includes identification of network artifacts based on network attributes, text, filetype, protocol and new search management features as well as high-speed packet meta data indexing. The suite includes:

• DeepSee Search for easy searching so anyone can, locate and view actual network communications in the way they were originally delivered, eliminating the need for IT intervention
• DeepSee Reports to display visual representations of captured traffic, helping the user quickly see what is happening on the network
• DeepSee Sonar for high-speed navigation through the virtual file system, identifying PCAPs for download or search