Lynx SSL/TLS Decryptor
The appliance works in transparent bridge mode intercepting selected network traffic. SSL sessions pass through Lynx SSL/TLS Decryptor transparently, so the client software thinks it connects directly to the target server as it uses the original address of the target host. The decrypted network traffic is forwarded to the dedicated DLP/IDS/IPS device for evaluation. Lynx SSL/TLS Decryptor encrypts data again and sends it over to the target server. The DLP/IDS/IPS systems can order Lynx SSL/TLS Decryptor to terminate the connection. Unencrypted traffic, which can also pass through Lynx SSL/TLS Decryptor, is forwarded to the IDS/IPS without being modified.
Integration with DLP, IDS, IPS systems provides them with insight into the encrypted data stream.
Allows feeding a couple of external DLP, IDS, IPS with data simultaneously.
Reduce the load of security solutions by delegating the decryption process.
Transparent certificate exchange with the use of Lynx SSL/TLS Decryptor.
Simplifying your infrastructure by utilizing high appliance throughput.
|Concurrent SSL/TLS sessions||25,000||50,000||250,000||1,000,000|
|Full handshakes (RSA 1024 bit)||1,500/s||3,000/s||15,000/s||100,000/s|
|Full handshakes (RSA 2048 bit)||750/s||1,500/s||5,000/s||50,000/s|
|Maximum number of network interfaces||10×1 Gbps||10×1 Gbps||24×10 Gbps||32×10 Gbps|