Unified Access Platforms
For complete IDS or SIEM systems
The Visibility Architecture
Tapping network links at the Core, Distribution and Access layer requires you to access traffic from many links. This diagram shows how to optimize your tap strategy for cost, performance and reliability.
The foundation is to insert a passive optical TAP into each network link. Optical TAPs split the light from the network, sending a mirror copy of the network traffic to a Network Packet Broker (NPB) for aggregation and distribution to the monitoring tools. Optical TAPs require no power, so the network links continue to pass traffic even if power to the monitoring equipment fails. These TAPs are flexible and can be designed for single mode and multi-mode fiber at speeds from 10Mbps to 100Gbps.
Once all the links are tapped, the traffic is passed to a Network Packet Broker which provides intelligent features required to aggregate the traffic from many links into a variety of traffic streams.
If aggregated traffic is greater than the capacity of any single monitoring tool, the NPB can equally distribute the load to multiple monitoring tools, providing flexibility and scalability as your network changes and grows.
Using other advanced features, the NPB can mask confidential information contained in packet payloads and or strip the payload altogether, providing compliance with data privacy regulations.
Using optical fiber taps feeding all traffic to an intelligent Network Packet Broker saves overall cost by lowering TAP and monitoring tool costs, while providing complete traffic visibility for more accurate analysis and output.