Aviz Open Packet Broker details user defined filtering for deep packet inspection

Aviz Open Packet Broker (OPB) integrates User Defined Filtering (UDF) to apply Deep Packet Inspection (DPI) with a high level of specificity, enabling enterprises to manage network traffic at precise byte offsets. This capability assists IT and security professionals in tailoring traffic filtering and monitoring to meet detailed operational and compliance requirements.

Research overview

Aviz OPB builds upon the open-source SONiC platform to provide an adaptable network traffic management solution. UDF within Aviz OPB permits configuration of rules targeting exact byte values in network packets at specified offsets, starting from either the IP header for Layer 3 or EtherType for Layer 2 packets. This granular approach supports detailed traffic inspection beyond conventional methods.

Technical breakdown

User Defined Filtering operates by allowing administrators to specify matching criteria based on packet content at fixed byte offsets. This enables precise control over which packets are permitted or denied, supporting tasks such as application prioritization, content filtering, and security threat detection. Flexible rule adjustments can be implemented through APIs, facilitating real-time updates without service interruptions.

Operational impact

Enterprises deploying Aviz OPB with UDF gain the capability to monitor traffic patterns closely and enforce policies related to security and data privacy. This includes detection of complex threats such as zero-day attacks and prevention of unauthorized data transfers. The system’s design accommodates high-throughput environments while maintaining processing efficiency and low latency.

Leadership perspective

Aviz OPB’s hardware-agnostic architecture allows integration with diverse network infrastructure components from multiple vendors. Its centralized, API-driven management interface aims to reduce operational complexity often associated with Deep Packet Inspection (DPI) rule administration. The solution supports deployment in both on-premises (on-prem) and hybrid cloud environments, facilitating consistent Network Policy Enforcement (NPE).

Aviz OPB’s incorporation of User Defined Filtering for Deep Packet Inspection provides enterprises with enhanced traffic visibility and control capabilities necessary for nuanced security enforcement and compliance adherence. This Blog Signals brief presents a fact-based summary derived from the vendor blog content.