In this Sponsored show we talk to Gigamon about " making the SPAN port what it always wanted to be". In short, Gigamon makes switch devices that allow for powerful ways to capture traffic from your network, then slice, dice and forward it. If you have ever had problem with "not enough SPAN ports" for packet capture, then take a look at this product.
Show Agenda
Overview of Gigamon
Mid-stage startup; founded in 2004; all product built-in-the-USA; founders from network monitoring industry
Bridge the gap between faster-and-flatter networks, and the growing demand for diverse monitoring, management and security tools
Establish an out-of-band, pervasive fabric, connecting to the network mirror & SPAN ports, and intelligently delivering the right traffic to the right tool
Sounds good, but how do you do that ?
A range of systems from 1RU to 1Tb chassis
Let's focus on a deployment of just one system (although they are all locally and remotely 'stackable')
Traffic on SPAN/Mirror/TAP ports is delivered into the Gigamon Fabric on what we call a "network port"
At wirespeed, the traffic is 'manipulated' using GigaVUE software with hardware acceleration
"Manipulation" means duplication, slicing, filtering, masking, etc
How is the "Manipulation" configured : using "FlowMapping" logic
What is FlowMapping ?
A L2/3/4 rules engine that overcomes the limitation of ingress and egress filtering
Ingress : too much is dropped at the entry .. Good stuff could be lost
Egress : too much could be dropped through oversubscription
Flow Mapping sits in the heart of the system (and can span multiple systems)
How complex / what type of rules can be written ?
Very complex, multi-step boolean type decisions
Multiple egress (multi-tool as we call it) so that single ingress traffic can go to multiple tools
Are they fixed rules/definitions ?
We support the L2/3/4 decision criteria
Also allow for a set of User-Defined criteria to look for specific traffic characteristics
How do you extend beyond a single system ?
We offer stacking – to connect multiple system together over n x 10Gb trunks
We offer tunneling – to allow systems in remote offices to be part of the central "stack"
How do your customers use the systems ?
Single-system deployments to smooth the migration from 1Gb to 10Gb
To deliver longer and more predictable ROI for monitoring, management and security tools
In Data Centers to centralize all monitoring/management system into one rack
Service providers around the globe to support the growth of mobile devices
What does a normal deployment look like with your technology ?
Ranges from a single system to multiple systems stacked together to form one Visibility Fabric
Easy/flexible to configure – Network ports and tool port
Maps are built to establish the "mapping rules" of traffic on network ports to tool ports
Central management from a single GUI system (Citrus) if required
How does your solution get deployed in the Data Center ?
End of row deployments
Each end of row location has uplinks to top-of-rack swicthes
GigaVUE devices are connected together using stacking
All monitoring and management tools centrally located in one rack
"Maps" are changed as needed to forward traffic from any server, any rack, any row to central tools
You can also watch a presentation from Gigamon from TechFieldDay at Vimeo - Gigamon where they presented at Network Field Day in Otcober 2011.
Thanks to Gigamon for sponsoring the Packet Pushers and sharing this content with the community.
Contact
You can follow them on twitter at http://twitter.com/gigamon or on the web at http://www.gigamon.com/
