Network Intrusion Detection Appliances

Our software appliances are described in the software plans page. For on-premise hardware deployments, MetaFlows offers turn-key appliances capable of monitoring up to 10Gbps. The appliances are based on open source standards to allow quick and seamless integration in any existing infrastructure. They are remarkably robust and they offer one of the best cost-to-performance ratios in the industry.

Scale from 50 Mbps to 10 Gbps on commodity hardware.

By the time a branded security appliance is rolled out, it is already dated as hardware becomes obsolete very quickly. So why would you invest in a branded IDS/IPS "big iron" which becomes obsolete the moment it leaves the factory? MetaFlows appliances evolve with the rapid improvement of CPU technology. The performance graph shows the IDS throughput of the latest AMD EPYC CPU technology in the 24C and 64C appliances.

5 Gbps Behavioral Malware Detection Appliance

Easily shut down threats without compromising reliability or performance.

You do not have to place another device in line to shut down threats. Our groundbreaking Soft IPS technology lets you shut down threats in passive mode. Read More...


5 Gbps Behavioral Malware Detection Appliance


10 Gbps Behavioral Malware Detection Appliance


10 Gbps Behavioral Malware Detection Appliance


20 Mbps UTM Appliance

Other Applications

Private Sandbox.

Normally the MSS uses a cloud-based sandbox system to process suspected content. A private sandbox appliance offers the ability to process samples locally on dedicated hardware. We offer 3 levels of hardware performance depending on the amount of network traffic being processed. Please contact us to learn more.

Passive SSL/TLS interception.

You do not have to place another device in line to intercept SSL/TLS traffic. Our groundbreaking passive SSL/TLS technology lets you cost-effectively and securely gain visibility of your HTTPS traffic without modifying the original SSL/TLS sessions. Our unique passive SSL/TLS appliances aggregates decrypted SSL/TLS sessions transforming HTTP2 to HTTP1.1. It then sends decrypted traffic to a traditional network monitoring system (such as the MSS sensor) as if it was generated by a mirror port. Read More...