Visibility Solutions

Garland Technology is committed to educating the benefits of having a strong foundation of network visibility and access. By providing this insight we protect the security of data across your network and beyond.

Resources

Garland Technology's resource library offers free use of white papers, eBooks, use cases, infographics, data sheets, video demos and more.

Blog

The TAP into Technology blog provides the latest news and insights on network access and visibility, including: network security, network monitoring and appliance connectivity and guest blogs from Industry experts and technology partners

Partners

Our extensive technology partnership ecosystem solves critical problems when it comes to network security, monitoring, application analysis, forensics and packet inspection.

Company

Garland Technology is dedicated to high standards in quality and reliability, while delivering the greatest economical solutions for enterprise, service providers, and government agencies worldwide.

Contact

Whether you are ready to make a network TAP your foundation of visibility or just have questions, please contact us. Ask us about the Garland Difference!

Blogheader image.png

TAP Into Technology

Leading the Way in Network Technology

Using Packet Capture to Plus Up Public Cloud Confidence

Posted by Erik Freeland | 4/30/19 8:00 AM
Application data security when moving to the cloud remains a chief concern among CIOs, DevOps, NetOps and SecOps teams. While the advantages of moving apps to the cloud is clear, well-run IT organizations refuse to risk a security slip in the public cloud that ultimately costs money and damages corporate reputation. The solution, then, to get full packet capture, analysis and distribution is to deploy born-in-the-cloud, for-the-cloud agents. Agents like Nubeva Prisms exist today and provide the best solution to full packet-level data monitoring the enterprise is familiar with in their current data center environment.


At face value, the advantages and cost savings of moving enterprise applications to the public cloud are easy to grasp. Why wouldn’t your enterprise leverage the scale and power of the cloud, which grows as your business grows without the huge capital investment of adding to an existing data center?

Well…Just like they do in your own data center, applications sometimes misbehave in the public cloud.

Let’s say, for example, your organization moves its enterprise resource planning (ERP) application to the public cloud. The data your business stores in its ERP belong to the company and you expect full control access to that data. No one else can get that critical information without your permission, right? Suddenly a software bug allows other users to gain access to the data. How did this security slip-up happen in the cloud?

“There is an astonishing number of insecure ERP applications directly accessible online, both on-premise and in public cloud environments, increasing the attack surface and exposure.” –Source: ERP Applications Under Fire: How Cyberattacker's Target the Crown Jewels.

While the cloud simplifies infrastructure provisioning and management, the new challenges that present themselves (security, to name one) must be solved before full-scale cloud deployment takes place.Part of the answer to the security challenge is gaining full visibility into the data you’ve decided to host in the cloud. Network engineers need to determine how they will gain access, visibility and control of the data before moving enterprise applications to the cloud because, once there, they lose access to the tools used in the data center to diagnose these problems.


Cloud Packet Visibility

 

Packet Capture to the Rescue

As in the data center, packet capture and analysis are the secret sauce to troubleshooting performance issues in the cloud environment. Full packet capture is like having an 80-inch 4k picture-in-picture screen running your favorite programming 24/7. Unfortunately, public cloud providers only offer up summary information like flow logs – and that information simply doesn’t cut it when your team needs detailed information about a security event. So what should a network security team do?

Staying ahead of security breaches or network issues, and understanding the importance of every single packet matters for the security and performance of your business. To achieve this level of insight in the cloud, you need:
  • Accurate packet-level history of network activity so the security team can recreate events and look at related packets to identify exactly what happened and when.
  • 100% packet capture of traffic that will help you detect a threat or identify a network performance issue in real time. 
  • A network monitoring tool that copies packets of all sizes and types to give you complete visibility.

To acquire, process and distribute cloud packet traffic to your monitoring tools, IT teams are turning to next-generation agents like Nubeva Prisms. These highly specialized agents instrument the cloud enable packet monitoring and analysis in detail.

Because they are cloud-native, modern agents like Prisms can be used where there is no virtual network terminal access points (VTAP), which allow you to continuously stream virtual machine network traffic to a network packet collector or analytics tool. With Prisms, users can acquire packet traffic from any public cloud provider and cloud compute resources.

Prisms technology is designed to filter and process the packets and then replicate and distribute the information to the tools and teams that need it. The agent can send traffic to any routable IP address including tool destinations like IDS and DPI security tools, other VPCs or VNETs, and to load balancers that front tool clusters. Prisms can even send packet traffic to your on-premises systems via Express Route or Direct Connect.

What else is next-gen about Prisms? It cuts down on data transport charges while increasing the life and utility of the tools and teams you’ve already put into place. Prisms literally is designed to help you connect your cloud and maximize your access, visibility and control of the data you place there.

The public cloud offers incredible opportunity for your enterprise and with the right formula, you can get full packet capture, analysis and distribution using born-in-the-cloud, for-the-cloud agents. If it’s confidence and security you’re thinking about as you consider how to fully leverage the cloud, let Prisms serve as the policy driven, cloud networking solution to activate and enable your security and monitoring tools.

 

[Want to learn more about Prisms and how they can provide cloud packet visibility? Contact us today for more information or a free trial to get started!]

Topics: Network Visibility/Monitoring, Cloud Solutions

Written by Erik Freeland

Erik is the Director of Customer Engineering for Nubeva.