BGP and GeoIP
Peered with edge or internal routers, Kentik Detect gets live eBGP/iBGP routing updates that include source, destination, path, and AS (next hop, 2nd hop, 3rd hop). Each flow record is matched against the BGP RIB and enhanced with both BGP (community, route, next hop IP/CIDR, etc.) and GeoIP (city, region, and country). These fully indexed BGP and GeoIP fields tell you where and how each flow is going.
Without you knowing it, your network may be carrying traffic for botnets or compromised hosts, diverting your resources toward malicious activity that puts your reputation at risk. Using continuously updated feeds from world leaders in threat intelligence, Kentik Detect correlates threat information with every flow, enabling you to rapidly identify and respond to unauthorized or malicious use of your network.
Data Transit and Security
Kentik supports multiple deployment modes, so you’re the one who chooses how your data gets to Kentik Detect. Send it directly from network devices. Use our proxy agent to encrypt data for transit over SSL. Or deliver the data over a private cross-connect at an Equinix data center. If regulatory or security constraints rule out the cloud, we can also deploy on premises in your own data center.