ExtraHop version 6.2 can capture packets at up to 40Gbps, which the company claims is four times faster than competing vendors can achieve. In addition, it can now perform continuous packet capture in virtual environments.
The product integrates with ServiceNow, automatically ticketing and triaging events.
Users can be presented with dashboards based on their LDAP privileges, making it simpler to meet the needs of different groups, and queries can now be nested when searching transaction records.
ExtraHop ANZ lead Kem Pehlivan told iTWire that the company's approach was to observe and analyse network traffic flows. This allowed network performance monitoring and diagnostics (NPMD) without the need to add instrumentation to code, install agents on devices, or aggregate log data.
The flows are automatically analysed and classified, determining what conditions are normal, and providing early warnings when things start to go wrong.
This approach reveals 90% of the information IT teams need without requiring instrumentation, freeing up time to work on the remaining 10%.
The analysis is performed as close as possible to the source to make the results as close to real-time as possible and to avoid duplicating the data. But if some sort of post-processing is required (eg, for forensic examination), ExtraHop can easily store the packets.
This process turns what is otherwise considered an IT overhead into an asset that can help run the business, said Pehlivan.
“The transformation from reactive to proactive cannot happen without technologies to support it, and the traditional packets-first NPMD model has rendered proactive, strategic operations virtually impossible,” said Jesse Rothstein, chief technology officer and co-founder of ExtraHop.
“At ExtraHop, we’ve recognised from the beginning that the scale, complexity, and dynamism of modern IT couldn’t be addressed with post-hoc analysis of data. Modern IT demands analytics that are real-time, at scale, as well as intelligent, actionable, and predictive. This is a new era for analytics, and ExtraHop continues to push the envelope far beyond legacy NPMD products.”
ExtraHop 6.2 will be generally available on 19 April.