Bypass TAP (uga diarani bypass switch) nyedhiyakake port akses sing aman kanggo piranti keamanan aktif sing dipasang kayata IPS lan firewall generasi sabanjure (NGFWS). Bypass switch dipasang ing antarane piranti jaringan lan ing ngarep piranti keamanan jaringan kanggo nyedhiyakake titik isolasi sing bisa dipercaya antarane jaringan lan lapisan keamanan. Piranti kasebut nggawa dhukungan lengkap kanggo jaringan lan piranti keamanan kanggo nyegah risiko gangguan jaringan.
Solusi 1 1 Link Bypass Network Tap (Bypass Switch) - Independen
Aplikasi:
Bypass Network Tap (Bypass Switch) nyambung menyang rong piranti jaringan liwat port Link lan nyambung menyang server pihak katelu liwat port Piranti.
Pemicu Bypass Network Tap (Bypass Switch) disetel menyang Ping, sing ngirim panjalukan Ping berturut-turut menyang server. Sawise server mandheg nanggapi ping, Bypass Network Tap (Bypass Switch) mlebu mode bypass.
Nalika server wiwit nanggapi maneh, Bypass Network Tap (Bypass Switch) bakal bali menyang mode throughput.
Aplikasi iki mung bisa digunakake liwat ICMP (Ping). Ora ana paket denyut jantung sing digunakake kanggo ngawasi sambungan antarane server lan Bypass Network Tap (Bypass Switch).
Solusi 2 Broker Paket Jaringan + Bypass Network Tap (Bypass Switch)
Broker Paket Jaringan (NPB) + Bypass Network Tap (Bypass Switch) -- Status normal
Aplikasi:
Bypass Network Tap (Bypass Switch) nyambung menyang rong piranti jaringan liwat port Link lan menyang Network Packet Broker (NPB) liwat port Piranti. Server pihak katelu nyambung menyang Network Packet Broker (NPB) nggunakake 2 kabel tembaga 1G. Network Packet Broker (NPB) ngirim paket heartbeat menyang server liwat port #1 lan pengin nampa maneh ing port #2.
Pemicu kanggo Bypass Network Tap (Bypass Switch) disetel menyang REST, lan Network Packet Broker (NPB) mbukak aplikasi bypass.
Lalu lintas ing mode throughput:
Piranti 1 ↔ Saklar Bypass/Tutul ↔ NPB ↔ Server ↔ NPB ↔ Saklar Bypass/Tutul ↔ Piranti 2
Broker Paket Jaringan (NPB) + Bypass Tap Jaringan (Bypass Switch) -- Bypass Piranti Lunak
Katrangan Piranti Lunak Bypass:
Yen Network Packet Broker (NPB) ora ndeteksi paket denyut jantung, piranti lunak bakal ngaktifake bypass.
Konfigurasi Network Packet Broker (NPB) kanthi otomatis diganti kanggo ngirim lalu lintas mlebu bali menyang Bypass Network Tap (Bypass Switch), saengga nglebokake maneh lalu lintas menyang link langsung kanthi kerugian paket minimal.
Bypass Network Tap (Bypass Switch) ora perlu nanggapi babar pisan amarga kabeh bypass ditindakake dening Network Packet Broker (NPB).
Lalu lintas ing Bypass Piranti Lunak:
Piranti 1 ↔ Saklar Bypass/Tutul ↔ NPB ↔ Saklar Bypass/Tutul ↔ Piranti 2
Broker Paket Jaringan (NPB) + Bypass Tap Jaringan (Bypass Switch) -- Bypass perangkat keras
Katrangan babagan Bypass Perangkat Keras:
Ing kahanan nalika Network Packet Broker (NPB) gagal utawa sambungan antarane Network Packet Broker (NPB) lan Bypass Network Tap (Bypass Switch) pedhot, Bypass Network Tap (Bypass Switch) bakal ngalih menyang mode bypass supaya sambungan wektu nyata tetep bisa digunakake.
Nalika Bypass Network Tap (Bypass Switch) mlebu mode bypass, Network Packet Broker (NPB) lan server eksternal bakal dilewati lan ora nampa lalu lintas apa wae nganti Bypass Network Tap (Bypass Switch) bali menyang mode throughput.
Mode bypass dipicu nalika Bypass Network Tap (Bypass Switch) ora disambungake maneh menyang catu daya.
Lalu lintas offline perangkat keras:
Piranti 1 ↔ Saklar Bypass/Tutul ↔ Piranti 2
Solusi 3 Rong Keran Jaringan Bypass (Saklar Bypass) kanggo saben pranala
Pandhuan konfigurasi:
Ing persiyapan iki, 1 pranala tembaga saka 2 piranti sing nyambung menyang server sing dikenal dilewati dening rong Bypass Network Taps (Bypass Switches). Kauntungane iki tinimbang solusi 1 bypass yaiku nalika sambungan broker paket jaringan (NPB) kaganggu, server isih dadi bagean saka pranala langsung.
2 * Bypass Network Taps (Bypass Switches) saben link - Software Bypass
Katrangan Piranti Lunak Bypass:
Yen Network Packet Broker (NPB) ora ndeteksi paket denyut jantung, piranti lunak bakal ngaktifake bypass. Bypass Network Tap (Bypass Switch) ora perlu nanggepi babar pisan amarga kabeh bypass ditindakake dening Network Packet Broker (NPB).
Lalu lintas ing bypass piranti lunak:
Piranti 1 ↔ Saklar Bypass/Tutul 1 ↔ Broker Paket Jaringan (NPB) ↔ Saklar Bypass/Tutul 2 ↔ Piranti 2
2 * Bypass Network Taps (Bypass Switches) saben link - Hardware Bypass
Katrangan babagan Bypass Perangkat Keras:
Ing kahanan nalika Network Packet Broker (NPB) gagal utawa sambungan antarane Bypass Network Tap (Bypass Switch) lan Network Packet Broker (NPB) pedhot, kaloro Bypass Network Taps (Bypass Switches) bakal dialihake menyang mode bypass kanggo njaga sambungan aktif.
Beda karo setelan "1 Bypass per link", server isih kalebu ing link langsung.
Lalu lintas offline perangkat keras:
Piranti 1 ↔ Saklar Bypass/Tutul 1 ↔Server ↔ Saklar Bypass/Tutul 2 ↔ Piranti 2
Solusi 4 Rong Tap Jaringan Bypass (Bypass Switches) dikonfigurasi kanggo saben pranala ing rong situs kasebut
Pandhuan setelan:
Opsional: Rong Network Packet Broker (NPB) bisa digunakake kanggo nyambungake rong situs sing beda liwat trowongan GRE tinimbang siji Network Packet Broker (NPB). Yen server sing nyambungake rong situs kasebut gagal, server kasebut bakal ngliwati server lan lalu lintas sing bisa disebarake liwat trowongan GRE saka Network Packet Broker (NPB) (kaya sing dituduhake ing Gambar ing ngisor iki).
Wektu kiriman: 06-Mar-2023
