Security Software Plug-In provides network event analysis.

Press Release Summary:



Emulex Endace Fusion Connector for Splunk optimizes data analysis workflow between EndaceProbe™ Intelligent Network Recorders and third-party monitoring and security tools that detect anomalous network behavior. Combined solution provides organizations with ability to detect and investigate issues at network packet-level. By deploying EndaceProbe INR's RESTful API, users can click on Splunk event and pivot straight to packets of interest for deep analysis in protocol analyzer.



Original Press Release:



Emulex Announces Endace Fusion Connector for Splunk



Deploying EndaceProbe Intelligent Network Recorders and Splunk Software Provides Fail-safe Security and Network Event Analysis



LONDON and COSTA MESA, Calif., -- IP EXPO -- Emulex Corporation (NYSE: ELX), a leader in network connectivity, monitoring and management, today announced the Emulex Endace Fusion Connector for Splunk, an open workflow solution for detecting and resolving network security issues. The Emulex Endace Fusion Connector for Splunk optimizes data analysis workflows between its family of EndaceProbe(TM) Intelligent Network Recorders (INRs) and Splunk's industry-leading third-party monitoring and security tools that detect anomalous network behavior. Integrated with EndaceProbe INRs, the combined solution provides organizations with the ability to detect and investigate issues at the network packet-level in order to lower time-to-resolution (TTR).



"By integrating Splunk and Emulex technologies at the 'event' level, organizations can complete the detection and investigation cycle quickly and completely by determining the root cause of network security and operational issues," said Mike Riley, senior vice president and general manager, Endace portfolio, Emulex. "As a result, customers are able to contain real network security and operations issues more effectively while reducing the impact on end users, detect false positives more quickly and better 'tune' detection systems."



Splunk is a leading software platform for collecting and correlating machine data generated from a variety of different IT systems and infrastructure. Splunk helps customers detect network problems, monitor infrastructure elements and gain real-time visibility into customer experience, transactions and behavior. Because Emulex captures 100 percent of the network traffic transiting a link, whether it is a 10Gb Ethernet (10GbE), 40GbE or 100GbE link, the EndaceProbe INR offers a historical view with the highest level of detail and accuracy available in the industry today. By deploying the EndaceProbe INR's RESTful API, users can click on a Splunk event and pivot straight to the packets of interest for deep analysis in a protocol analyzer, such as Wireshark.



"The Endace Fusion Connector for Splunk provides a more comprehensive view of the network with added search and drill-down capabilities," said Bill Gaylord, senior vice president of business development, Splunk. "Visibility to network activity gives both Security Operations (SecOps) and Network Operations (NetOps) teams the ability to quickly identify anomalous activity and conduct forensic investigations.  They can not only understand the scope of a potential threat but also identify the source by simply zooming in on an event and quickly obtaining the relevant packet information."



The Emulex Endace Fusion Connector for Splunk is available through Splunk Apps. The plugin is easy to install and adds minimal overhead to the performance of the application. The Endace Fusion Connector for Splunk is the first connector to be announced as part of the Endace Fusion Ecosystem(TM) program. The Endace Fusion Ecosystem program is focused on applications and partners who provide complementary capabilities to network recording that are required to detect, investigate and resolve common networking and security incidents.



"We have been working closely with Emulex to test the new Endace Fusion Connector for Splunk and we found the integration delivered a 55 percent time saving on each event-to-packet search operation. The ability to instantly drill down from a Splunk event alert directly to the associated network packets is invaluable, saving time and resources and most importantly, accelerating root cause identification and resolution," said Alistair Meakin, director, Marquest. "We see a big opportunity to help our Splunk users dramatically enhance their network and security event management with this new capability from Emulex and Splunk."



Resources:

--  Read our Endace on Network Visibility blog on today's news here.

--  Watch a demonstration of the Endace Fusion Connector for Splunk here.

--  Download the Splunk Solution Brief here.

--  Download the Endace Fusion Connector for Splunk from Splunk Apps here.

--  For more information on the Fusion Ecosystem Program, click here.



Tweet this:  #IPEXPO News: @Emulex announces the Endace Fusion @splunk Connector: http://ow.ly/pNQsE



Follow Emulex on Twitter.



About Emulex

Emulex, a leader in network connectivity, monitoring and management, provides hardware and software solutions for global networks that support enterprise, cloud, government and telecommunications. Emulex's products enable unrivaled end-to-end application visibility, optimization and acceleration. The Company's I/O connectivity offerings, including its line of ultra high-performance Ethernet and Fibre Channel-based connectivity products, have been designed into server and storage solutions from leading OEMs, including Cisco, Dell, EMC, Fujitsu, Hitachi, HP, Huawei, IBM, NetApp and Oracle, and can be found in the data centers of nearly all of the Fortune 1000. Emulex's monitoring and management solutions, including its portfolio of network visibility and recording products, provide organizations with complete network performance management at speeds up to 100Gb Ethernet. Emulex is headquartered in Costa Mesa, Calif., and has offices and research facilities in North America, Asia and Europe. For more information about Emulex (NYSE:ELX) please visit http://www.Emulex.com.



All trademarks, trade names, service marks, and logos referenced herein belong to their respective companies.



Press Contacts:

Katherine Lane

Director, Corporate Communications

+ 1 714-885-3828

katherine.lane@emulex.com



Jolene Peixoto

Senior Manager, Public Relations and Social Media

+1 714-885-3858

jolene.peixoto@emulex.com



Web Site: http://www.emulex.com

More from Optics & Photonics

All Topics