DSFS File System
The core of Solera DeepSee is the DS File System (DSFS), a proprietary system optimized for high-speed network packet capture, storage, and playback. Among its many benefits, DSFS implements proprietary disk management, a virtual file system (VFS), management of capture on multiple interfaces, and services for regenerating packets to external network segments.
Solera DB classifies, indexes and stores all network traffic (layers 2-7) in a high performance database for quick search and retrieval. The architecture stores rich and detailed information including packets, sessions, flows, files, applications and conversations.
One needs only to look deep inside packet data to find the telltale signatures of true identity. Solera Networks performs deep packet inspection to classify over 1200 applications and thousands of descriptive details. This means that not only can you efficiently identify web traffic, you can easily access descriptive information about a network session including application, persona identity, intended actions, content types, and file names—all while other technical details are extracted and stored. New reports include application families, applications, email addresses, social network personas, instant messaging handles, search engine queries, URLs, and many more.
Seamless Integrations – Powerful API
Solera DeepSee integrates with best-of-breed network security technologies to pivot directly from an alert or log and obtain full-payload detail of the event before, during and after the alert. The open, web services REST API lets you leverage technologies like Dell SonicWALL™, HP ArcSight™, LogRhythm™, McAfee®, Palo Alto Networks™, Q1 Labs™, Sourcefire®, Splunk® and others.
Solera DeepSee Appliances capture and classify everything that crosses your network (packet header and payload—layers 2-7), giving you a complete and forensically sound record of network activity. Only Solera DeepSee Appliances meet the grueling demands of the largest government and enterprise networks, yet swiftly reconstruct and deliver real files from within terabytes of raw packet data.
Scale to Any Network
Solera DeepSee can meet the demands of any size network. Deployment options range from small or branch office appliances to dedicated 10Gb appliances with expandable storage for today’s fastest networks. Only Solera Networks gives you the option to also deploy as a Solera DeepSee Virtual Appliance. Needless to say, large business customers with expansive networks have selected Solera Networks as the only choice capable of meeting their needs — now and into the future.
All of our capabilities and features—including deep packet inspection—are packaged uniquely as a virtual appliance. This is ideal for small to medium-sized organizations and branch office deployments, the power of Solera Networks technology is now available at your convenience in any virtual environment for VMWare ESX deployments.
Network speeds and the amount of data traversing today’s networks continue to increase. It’s not easy to grab 10 million or more packets a second, index them, analyze them, and store them without losing a single byte. The best security analytics tools are useless if the underlying data wasn’t recorded with full fidelity.
Solera DeepSee is a patented architecture that does just that; it captures network data at speeds up to 10Gbps with full fidelity and performs deep packet inspection without using custom capture hardware. In addition, Solera DeepSee offers industry standard PCAP export capabilities allowing you to archive select data or import it into other applications for analysis.
As your network evolves, Solera Networks will be able to provide the very latest in capture and analysis capabilities without a forklift upgrade. This architecture is proven to scale seamlessly from the most demanding environments, to small remote sites, and to cloud-based infrastructures.