Get Control of Your Network Traffic

Accurate identification and visualization of the traffic in your network, is the key to control.. PacketLogic's identification engine DRDLTM is state-of-the-art when it comes to Internet traffic identification. DRDL utilizes multiple Layer 4 to 7 properties and looks as far as necessary into a new flow, a.k.a. connection or session, to exclude false-positives and to discover tunneling over other protools.

During the identification process, a number of traffic properties are aggregated, e.g. URl, filename, SIP caller ID and chat channel. This is what we call Deep Flow Inspection (DFI). Today's applications require that traffic is managed as flows versus as packets. Packets have to be placed in a context to get the complete picture and to be able to apply intelligence. And that context is a flow.

Why is tracking flows important? Because just tracking packets, is akin to receiving gragments of conversation. The complete picture and accurate information is a necessity for all kinds of managment -- the same goes for Traffic and Service Management. The Internet has become critical to all industries, and different users have different needs. That is why correct traffic identification is the first vital step in the process.

Based on information provided by DRDL, PacketLogic can adminster your network traffic in many ways to achieve your objectives;

  • Identify viruses, hacker attacks and bandwidth hogs
  • Filter hazardous and unwanted traffic based on Layer 7 properties
  • Limit non-prioritized traffic, e.g. P2P, to secure quality (QoS) for crucial applications
  • Postpone unnecessary investments in new technology
  • Apply 'fairness' between users
  • Report bandwitdth utilization
  • Differentiate and personalize your broadband services

The above features, and many more, are found in PacketLogic's five modules -- Surveillance (real-time traffic monitoring), Statistics (traffic analyzing), Filtering, Traffic shaping (bandwidth managemtn) and NetAccess (service managemnt). PacketLogic comes in three different editions;

  • PL5600 - The entry level edition. Includes Serveillance, Statistics, WebStatistics, Filter and Traffic Shaping. License limited to bandwidth (4, 10, 24, 45 and 100Mbps). Upgrades are done with a software key.
  • PL7600s - A powerful GE or 10GE hardware platform Surveillance is the only mandatory module; the other modules are optional. License limited to number of managed IP addresses. Suitable for installations with one or a few systems.
  • PL7600i - The ISP edition. Suitable for installations with multiple connection points. License based on number of customers - pay as you grow.

PacketLogic was launched in 2001. It has been developed in and for demanding conditions, with a current installed base of 200+ Internet Serveice Providers (ISPs). PacketLogic has the most accurate traffic identification available, and is packaged in selectable modules. PacketLogic was designed using a transparent Layer 2 architecture which gives better capacity, minimum latency, simplified installation and maximized security. The list of PacketLogic's compelling reasons go on...

Our customers typically get a ROI (Return on Investment) between 3-12 months. Make your network maintenance more efficient through control. Decrease your cost for tansit/peering/WAN connection through better utilization of available resources. Postpone unnecessary investments in new technology. Make it possible to implement/launch services that require quality assurance. Increase revenue and decrease customer churn through appleaing and customeized offerings.

PacketLogic leads the migration from pure packet-based Interneworking, to flow-based traffic control. Join us.

PacketLogic Surveillance

Real-Time Network Traffic Monitoring

  • Monitor all your IP traffic in real time
  • Total traffic overview down to details on a specific connection
  • Find discrepancies in your traffic patters
  • Manage support based on accurate information/li>

PacketLogic Surveillance gives you as a network adiministrator the complete picture of the traffic in your network - in real time. You get an overview of the total inbound and outbaound traffic and the number of connections.

Accurate traffic information is necessary to make decisions on ow to manage your traffic. Traffic can be disseminated and presented on various levels of detail. With PacketLogic you have the complete picture of what is going on in your network.

PacketLogic Filtering

Block Unwanted and Improper Traffic

  • Filter unwanted traffic
  • Define time-based rules
  • Do filtering based on detailed properties like direction, filename and chat channel
  • Rewrite properties - MAC/IP address and DSCP
  • DoS/DDoS protection

The PacketLogic Filtering module is a high-performance firewall with unique features and functionality for complex networks. It is equipped with the most sophisticated configuration and rule editing system available today

Detailed filetering rules can be based on extracted traffic information, including variables like direction of filesharing (client vs. server), chat channel, web URL etc.

The Filtering module uses the service identifaction and the DFI peroperties from DRDL. This makes it possible to apply accurate filtering rules and use detailed traffic properties as conditions.

PacketLogic Statistics

Efficient Traffic Managment

  • A powerful traffic analysis tool
  • Manage abuse through criteria-based searches
  • Visualize traffic trends in graphs
  • Find discrepancies in the traffic pattern
  • Create scheduled traffic reports

The Statistics module enables you to look back in time and follow-up on trends. Efficient traffic managemtn requires usable and relevant information. Standard traffic logs contain substancial amounts of data but the information is time consuiming and complicated to analyze.

The ability to drill down to specifics makes PacketLogic an invaluagble tool for charting the health of your network. Statistics provides an efficient support tool to identify inappropriate behavior, problems and discrepancies.

PacketLogic Traffic Shaping

Powerful Bandwidth Managment and Traffic Shaping

  • Prioritize business and mission critical traffic
  • Maximize the use of available bandwidth resources
  • Avoid traffic peaks that consume all available bandwidth
  • Apply fairness between users

PacketLogic Traffic Shaping is a perful traffic shaper with unique features for large and complex networks. It can be used to limit expensive, unwanted and unprioritized traffic in favor or prioritized, active, business and mission critical traffic. This way QoS (Quality of Service) is applied to your traffic.

PacketLogic WebStatistics

Read-Only Customizable Traffic Reports

WebStatistics offer graph presentations in a regular web browsr. The graphs are clickable for further in-depth traffic information. This tool is perfect for management meetings to present traffic patters, potential threats and investment needs


PacketLogic uses the DRDL engine (Datastream Recognition Definition Language) for identification of application protocols, a.k.a. Services, and DFI (Deep Flow Inspection). DRDL is the most accurate and granular application classification engine available today. DRDL goes far beyond port number when classifying traffic. It looks at Layer 4 through 7 properties, the payload going in both directions and as far into a new connection as necessary to avoid fals-positives. During the identificationi process, DRDL aggregates DFI properties like filename, chat channel, SIP caller ID, URL and direction.

More than 200 Services (HTTP, SMTP, FTP, Kazaa, Direct Connect, SSL, SSH etc.) are currently available as DRDL signatures, and new signatures are added constantly. DRDL has a scripting language that makes it possible to script signatures for proprietary applications

The administration of PacketLogic is done in the GUI (graphical user interface) client software, available for Windows, Linux and Mac OS X. This makes secure remote administration possible e.g. from a centralized Network Operating Center (NOC).

One client software can also connect to several PacketLogic systems simultaneously. For client-server communication, PacketLogic employs a high security encryption layer, based on widely used and proven secure encryption methods. PacketLogic also offers centralized management. one PacketLogic system is defined as Primary and the other systems as Secondary. Rules and updates are automatically pushed to teh Secondary systems.

All modules are managed by the same client software. PacketLogic uses objects that group local hosts, services, ports and time definitions (time-of-day, day-of-week and date range). These objects are used by all modules which make it easy to add entries and apply the same filtering and shaping rules. Rules can instantly be activated, even on established connections.

All manual processes done in the client software can also be automated using the standardized Python API. The API is utilized to integrate PacketLogic with legacy systems (BSS), network managemnt systems, and user authentication (Radius/AAA).

PacketLogic acts as a transparent Layer 2 appliance wich adds several benefits:

  • Easy installation - just plug it in
  • High security - cannot be seen in the network
  • High capacity and no performance - critical latency

PacketLogic is developed to manage large and complex networks. The system is installed at an optional access point in the network topology - by transit/WAN cannection, peering, distribution or aggregation. It has a unique feature in managing traffic based on AS number (Autonomous System). AS numbers are used by ISPs in BGP routing. The AS support in PacketLogic makes it possible to differentiate between traffic going to and from different operators.

PacketLogic relies on standard fall-over, e.g. Spanning Tree (STP), in surrounding appliances, except for the PL5600 that comes with internal fail-over. Load-balancing is done using Ether Channel or equivalent. PacketLogic supports 802.1Q for VLAN management, i.e. VLAND ID can be used when defining rules, PacketLogic also supports PPPoE and MPLS traffic, and includes functions like DHCP and Radius snooping. In the Filtering module, it is possible to rewrite certain packet properties, such as the destination IP address, destination MAC address and DiffServ CodePoint (DSCP).


  • Surveillance - real-time traffic monitoring
  • Statistics - traffic analyzing
  • Filtering - filter, rewrite and DDoS protection
  • Traffic Shaping - bandwidth management
  • NetAccess - Service Management


PacketLogic is a 19" wide rack-mountable system. The configuratioins below are 1U high unless otherwise stated.

PL56002x10/100/1000 Base-T
PL7600-C2x10/100/1000 Base-T
PL7600-M2x1000 Base-SX (Multimode)
PL7600-S2x1000 Base-LX (Singlemode)
PL76502U, 2x10GE interfaces, dual power supply
PL10001U Statistics system, single HDD
PL12002U statistics system, 5xHDD in RAID0/5, dual power supply

Administration Interfaces

2x10/100/1000 Base-T Admin/AUX Interfaces


  • Console port RS-232 with AT-Compatible RJ-45 female
  • SSH Command Line Interface
  • PacketLogic Client (Windows, Linux and Mac OS X)
  • Python API
  • SNMP v2c
  • Syslog