en:filtration_common [Документация VAS Experts]
Документация VAS Experts Документация VAS Experts-mobile
in

Settings

  • Show pagesource
  • Old revisions
  • Export to PDF
  • Fold/unfold all
  • Backlinks
  • Show pagesource
  • Old revisions
  • Export to PDF
  • Fold/unfold all
  • Backlinks
    • filtration_common

    This is an old revision of the document!

    In order to follow requirements of Federal laws 139 and 114, an operator has to block WEB pages that contain illegal information. These pages are defined by lists formed by Federal Supervision Agency for Information Technologies and Communications and Department of Justice.

    Our solution helps operator to save on development and support of his own solution. Our solution has several advantages compared to proxy server. Additionally, the operator gets the platform that enables him to save resources and get an income by providing new additional services.

    Required components:

    1. Deep Traffic Analysis Platform (DPI)

    Advantages:

    1. Easy to use:
      1. all rules are applied at one place: on DPI platform;
      2. the platform loads and applies rules from lists by itself.
    2. Productivity:
      1. the list includes up to 4 billion URL. Its representation in memory is compressed;
      2. provides filtering of up to 2 million URL per second on one CPU kernel;
      3. traffic capacity up to 40 Gb per second per one CPU;
      4. unlimited scaling by simple installation of additional servers;
      5. propagation delay is less than 30 μs.
    3. Functionality:
      1. http and https support. Other protocols can be added;
      2. filtering for HTTP proxy is supported (including Opera Turbo/Mini);
      3. the software can consider or ignore the port number (i.e. block http://www.example.com и http://www.example.com:8080 together or separately);
      4. does not depend on IP address changes;
      5. redirection instead of blocking is supported for http;
      6. incapsulation of VLAN, QinQ, MPLS is supported;
      7. support of asymmetric traffic routes, including processing of outbound traffic only;
      8. support of mirrored traffic;
      9. provides many other useful capabilities, unlike dedicated filtering solutions.
    4. "Four nine's" reliability:
      1. works 24×7 with no breaks and service delays;
      2. uptime of the systems already installed is many months;
      3. the Bypass mode is supported to calm the operator.
    5. Cost saving:
      1. DPI runs on a general purpose computer;
      2. support costs are almost zero - everything is automated;
      3. no need to waste money and time to develop and support own solution;
      4. a proxy hardware would cost much more to achieve the similar traffic capacity.