Kepiye Cara Nggunakake Inline Bypass Tap kanggo Nyegah Kakehan utawa Kacilakan Alat Safety?

TAP Bypass (uga disebut switch bypass) nyedhiyakake port akses sing ora aman kanggo piranti keamanan aktif sing dipasang kayata IPS lan firewall generasi sabanjure (NGFWS). Saklar bypass dipasang ing antarane piranti jaringan lan ing ngarep piranti keamanan jaringan kanggo nyedhiyakake titik isolasi sing bisa dipercaya ing antarane jaringan lan lapisan keamanan. Dheweke nyedhiyakake dhukungan lengkap kanggo jaringan lan alat keamanan kanggo ngindhari risiko gangguan jaringan.

Solusi 1 1 Link Bypass Network Tap(Bypass Switch) - Independent

Aplikasi:

Tutul Jaringan Bypass (Bypass Switch) nyambung menyang rong piranti jaringan liwat port Link lan nyambung menyang server pihak katelu liwat port Piranti.

Pemicu saka Bypass Network Tap (Bypass Switch) disetel menyang Ping, sing ngirim panjalukan Ping sing terus-terusan menyang server. Sawise server mandheg nanggapi ping, Tutul Jaringan Bypass (Bypass Switch) mlebu mode bypass.

Nalika server wiwit nanggapi maneh, Bypass Network Tap (Bypass Switch) bali menyang mode throughput.

Aplikasi iki mung bisa digunakake liwat ICMP (Ping). Ora ana paket deg-degan sing digunakake kanggo ngawasi sambungan antarane server lan Bypass Network Tap (Bypass Switch).

2

Solusi 2 Broker Paket Jaringan + Ketuk Jaringan Bypass (Bypass Switch)

Network Packet Broker(NPB) + Bypass Network Tap(Bypass Switch) -- Status normal

Aplikasi:

Tutul Jaringan Bypass (Bypass Switch) nyambung menyang rong piranti jaringan liwat port Link lan menyang Broker Paket Jaringan (NPB) liwat port Piranti. Server pihak katelu nyambung menyang Network Packet Broker (NPB) nggunakake kabel tembaga 2 x 1G. Broker Paket Jaringan (NPB) ngirim paket detak jantung menyang server liwat port #1 lan pengin nampa maneh ing port #2.

Pemicu kanggo Bypass Network Tap (Bypass Switch) disetel menyang REST, lan Network Packet Broker (NPB) mbukak aplikasi bypass.

Lalu lintas ing mode throughput:

Piranti 1 ↔ Ngalih Bypass/Tutul ↔ NPB ↔ Server ↔ NPB ↔ Ngalih Bypass/Tutul ↔ Piranti 2

3

Network Packet Broker(NPB) + Bypass Network Tap(Bypass Switch) -- Software Bypass

Deskripsi Software Bypass:

Yen Network Packet Broker (NPB) ora ndeteksi paket detak jantung, bakal ngaktifake bypass piranti lunak.

Konfigurasi Network Packet Broker(NPB) diganti kanthi otomatis kanggo ngirim lalu lintas mlebu bali menyang Bypass Network Tap (Bypass Switch), saéngga nglebokake lalu lintas menyang link langsung kanthi mundhut paket minimal.

Bypass Network Tap(Bypass Switch) ora perlu nanggapi kabeh amarga kabeh bypass ditindakake dening Network Packet Broker (NPB).

Lalu lintas ing Software Bypass:

Piranti 1 ↔ Ngalih Bypass/Tutul ↔ NPB ↔ Ngalih Bypass/Tutul ↔ Piranti 2

1

Network Packet Broker(NPB) + Bypass Network Tap(Bypass Switch) -- Hardware bypass

Deskripsi Hardware Bypass:

Yen Network Packet Broker (NPB) gagal utawa sambungan antarane Network Packet Broker (NPB) lan Bypass Network Tap (Bypass Switch) pedhot, Bypass Network Tap (Bypass Switch) ngalih menyang mode bypass kanggo njaga nyata- link wektu digunakake.

Nalika Tutul Jaringan Bypass (Bypass Switch) dadi mode bypass, Broker Paket Jaringan (NPB) lan server eksternal bakal dilewati lan ora nampa lalu lintas nganti Tutul Jaringan Bypass (Bypass Switch) bali menyang mode throughput.

Mode bypass dipicu nalika Tutul Jaringan Bypass (Bypass Switch) ora disambungake maneh menyang sumber daya.

Lalu lintas off-line hardware:

Piranti 1 ↔ Ngalih Bypass/Tutul ↔ Piranti 2

4

Solusi 3 Loro Ketuk Jaringan Bypass (Saklar Bypass) kanggo saben tautan

Instruksi konfigurasi:

Ing persiyapan iki, 1 link tembaga saka 2 piranti sing disambungake menyang server sing dikenal dilewati dening rong Bypass Network Taps (Bypass Switch). Kauntungan saka solusi 1 bypass yaiku nalika sambungan jaringan packet broker (NPB) diganggu, server isih dadi bagean saka tautan langsung.

5

2 * Bypass Network Taps(Bypass Switch) saben link - Software Bypass

Deskripsi Software Bypass:

Yen Network Packet Broker (NPB) ora ndeteksi paket detak jantung, bakal ngaktifake bypass piranti lunak. Ketuk Jaringan Bypass (Bypass Switch) ora perlu nanggepi kabeh amarga kabeh bypass ditindakake dening Broker Paket Jaringan (NPB).

Lalu lintas ing piranti lunak bypass:

Piranti 1 ↔ Switch Bypass/Tap 1 ↔ Broker Paket Jaringan(NPB) ↔ Switch Bypass/Tap 2 ↔ Piranti 2

6

 

2 * Bypass Network Taps (Bypass Switch) saben link - Hardware Bypass

Deskripsi Hardware Bypass:

Yen Network Packet Broker (NPB) gagal utawa sambungan antarane Bypass Network Tap (Bypass Switch) lan Network Packet Broker (NPB) pedhot, loro Bypass Network Taps (Bypass Switch) diuripake menyang mode bypass kanggo njaga. link aktif.

Beda karo setelan "1 Bypass per link", server isih kalebu ing link langsung.

Lalu lintas off-line hardware:

Piranti 1 ↔ Ngalih Bypass/Tutul 1 ↔Server ↔ Ngalih Bypass/Tutul 2 ↔ Piranti 2

7

Solusi 4 Loro Tutul Jaringan Bypass (Saklar Bypass) dikonfigurasi kanggo saben tautan ing rong situs kasebut

Instruksi setelan:

Opsional: Loro Broker Paket Jaringan (NPB) bisa digunakake kanggo nyambungake rong situs sing beda liwat trowongan GRE tinimbang siji Broker Paket Jaringan (NPB). Yen server sing nyambungake rong situs kasebut gagal, bakal ngliwati server lan lalu lintas sing bisa disebarake liwat trowongan GRE Jaringan Paket Broker (NPB) (kaya sing ditampilake ing Gambar ing ngisor iki).

8

9


wektu Post: Mar-06-2023