Netify DPI

Applications

Open Source DPI for Integrators

If we're doing our jobs right, people won't notice the network: the important Zoom business call will always work, the bad guys will be kept out, the ping time to the game server will never hiccup, and the streaming movie won't pixelate or (gasp!) pause. The expanding role of applications in our daily lives and the pervasiveness of network-ready devices have increased our dependence on the network.

The days of cut-price and unpredictable networks are coming to an end. Today's network has to be more innovative.

The core Netify DPI engine provides application detection, protocol detection, metadata extraction, connection tracking, and more. A suite of optional plugins can also be added to deliver:

  • Traffic management with application and protocol support
  • Next-generation cybersecurity and firewall protection
  • Quality of experience (QoE) monitoring
  • Quality of service (QoS) improvements
  • Device discovery and asset inventory
  • Digital experience monitoring
  • Zero rating solutions

How It Works

The open-source Netify Agent is a small footprint engine that performs underlying deep packet inspection (DPI), network intelligence, and metadata extraction. The analyzed network metadata is streamed to an open format and can be consumed by 3rd party applications. In addition to the metadata stream, the Netify Agent includes support for high-speed plugins for:

The Netify Agent has be deployed on small embedded devices, as well as big-iron backend network infrastructure:

  • SD-WAN solutions
  • Routers and firewalls
  • IoT gateways
  • Mobile core networks
  • Virtual network probes
  • and other OEM devices

You can find product details below and technical details here.

Netify DPI - Open Source Core

The core Netify DPI engine is open-source and widely deployed across a variety of Linux and xBSD systems. We also provide some premium add-ons - see below for details.

Open Source Core

Provides deep packet inspection and network analysis powered by our open source Netify DPI Agent.

Small Footprint

Runs on big iron and embedded systems, including the Raspberry Pi and OpenWRT devices.

Multi-Threaded

Supports multi-core environments for processing packets at gigabit speeds on standard and cost-effective x86 hardware.

Application Detection

Detects apps like Facebook, Twitter, YouTube, Netflix, etc., by mapping DNS lookups, extracting SSL/TLS certificate domain names, SNI hostnames, and more. Learn More »

Protocol Detection

Detects over 225 protocols, including BitTorrent, VPNs, Proxies, VoIP, and many others. Unpacks DNS, DHCP, SSL, HTTP, and other protocols found on the network. Learn More »

Metadata Extraction

Monitor and record hostname lookups, encryption ciphers, digital certificates, and other network metadata details. Learn More »

Netify DPI - Premium Add-Ons

Take DPI to the next level with local add-ons powered by cloud analysis and metadata.

Signature Updates

Deep packet inspection is not a one-time implementation. New applications and protocols are constantly appearing and evolving. You can manage signatures and updates via our cloud-based management tool.

Flow Actions Plugin

The Flow Actions Plugin provides direct hooks into the Netify DPI Engine for creating IP Sets, Connection Tracking (CT) Labels, and nftable Sets - ideal for tightly integrating firewall, QoS, and routing policy engines.

Aggregator Plugin

The Aggregator Plugin provides bandwidth and performance stats for the local DPI agent. The stats can be used for in-house data integration and our hybrid Informatics engine.

Device Discovery Plugin

The device discovery plugin identifies and inventories systems on the network. Enhance MAC addresses with brand, model, and operating system information.

Message Queue Plugin

The Message Queue Plugin exports data from the local DPI agent to a centralized message queue server. The data can then be analyzed, enhanced, and archived.

Compared with Traditional DPI

Netify DPI can be integrated on devices, in containers, and in the cloud.

Traditional DPI Netify DPI
Proprietary Open source
Expensive Affordable
Inflexible Dynamic and customizable
On-premise only Optional cloud intelligence
Vendor-locked signatures Open and custom signatures

Optional Network Intelligence

The Netify DPI Agent provides a great starting point. As an optional add-on, we complement the on-premise DPI data with cloud-based network intelligence and visibility. Features include:

  • Device Discovery
  • Advanced Risk Analysis
  • Bandwidth Monitoring
  • Forensics and Archiving
  • AI-based Network Events
  • Regulatory Compliance

Why Netify DPI?

Lower TCO

We take care of the regular software updates and signatures, so there's no need to spend internal development time and resources. Lower your total cost of ownership.

Next Generation Signature Management

Deep packet inspection is not a one-time implementation. New applications, protocols, and network security algorithms are constantly evolving. Add application signatures via our cloud-based management tool.

Focus on Your Core Product

Developing an in-house DPI solution is time-consuming and expensive. Focus on your product and solutions, and we'll take care of the rest. Get started with Netify DPI today. Developer Zone »

Open Source, Open Integration

Do you want to tweak and tune DPI for your solution? We live in an open-source world. From web servers to mobile phones to advanced IoT - open source runs the backbone of today's IT.

Reliability and Experience

Our cloud-based infrastructure has processed millions of service requests from hundreds of thousands of devices in the field: firewalls, servers, web cameras, security DVRs, and more. And that's just today.

Knowledge and Support

We have experience in diving into network traffic and extracting network intelligence. That's what we do. We are here to provide support and our DPI expertise when you need it.

Integration and Custom Solutions

Do you have any questions about integration, APIs or custom development?

Contact Us