Aviz Networks details APB 2.12 updates for hashing, decapsulation
Aviz Networks released Aviz Packet Broker (APB) 2.12 to improve traffic intelligence, overlay visibility, and security compliance for data center and service provider networks, with changes that affect load balancing, decapsulation, and control-plane cryptography.
Research Overview
The vendor describes APB 2.12 as an update for modern networks that use overlay-based architectures and have compliance requirements affecting packet monitoring and security workflows.
The announcement frames the release around three areas: traffic distribution, visibility into encapsulated traffic, and security and compliance controls for operations across cloud, data center, and service provider environments.
Key Findings
APB 2.12 adds dynamic LAG hashing on NVIDIA platforms to support flow-aware load balancing while targeting even traffic distribution across aggregated link members.
For visibility, the release introduces VXLAN and GRE decapsulation so monitoring and security tools can analyze original application flows, and it states that decapsulated traffic is processed like native traffic for filtering, forwarding, and analysis.
Technical Breakdown
For traffic distribution, the release describes dynamic LAG hashing that uses outer headers, inner headers, or both to make load balancing flow-aware, and it specifies targeting consistent utilization across all LAG member links.
It also states that this approach is optimized for overlay environments using VXLAN, GRE, and GTP-based architectures, with the stated goal of improving link utilization and consistent distribution.
Operational Impact
To address overlay blind spots, APB 2.12 adds VXLAN decapsulation that removes overlay headers to restore full visibility into encapsulated traffic for monitoring and security analysis with complete context, and it states this can reduce processing overhead on those tools.
The release also adds GRE decapsulation to expose inner packet flows for monitoring and analysis across distributed and WAN environments, and it says decapsulated traffic can be handled like native traffic using existing monitoring and security tools without additional operational complexity.
Security & Compliance Enhancements
On security controls, APB 2.12 describes FIPS-compliant cryptographic enforcement for control-plane operations using validated cryptographic modules.
It also describes an integrated security framework intended to deliver compliance within a unified system image, embedding consistent security enforcement into the deployment.
APB 2.12 updates traffic distribution, overlay decapsulation for monitoring and security visibility, and control-plane cryptographic enforcement aimed at compliant operations in cloud, data center, and service provider networks. Blog Signals brief is a fact-based summary of the vendor blog.