I-Bypass TAP (ebuye ibizwe ngokuthi i-bypass switch) inikeza izimbobo zokufinyelela ezingehluleki kumadivayisi okuphepha ashumekiwe asebenzayo njenge-IPS kanye nezinqamuleli zomlilo zesizukulwane esilandelayo (NGFWS). I-bypass switch isetshenziswa phakathi kwamadivayisi enethiwekhi naphambi kwamathuluzi okuphepha enethiwekhi ukuze kunikeze iphuzu elithembekile lokuzihlukanisa phakathi kwenethiwekhi nesendlalelo sokuvikela. Baletha ukwesekwa okugcwele kumanethiwekhi kanye namathuluzi okuphepha ukuze kugwenywe ubungozi bokunqamuka kwenethiwekhi.
Isixazululo 1 1 Xhumanisa I-Bypass Network Tap(Bypass Switch) - Ezizimele
Isicelo:
I-Bypass Network Tap(Bypass Switch) ixhuma kumadivayisi enethiwekhi amabili ngezimbobo ze-Link futhi ixhumeka kuseva yenkampani yangaphandle ngezimbobo zeDivaysi.
I-trigger ye-Bypass Network Tap(Bypass Switch) isethelwe ku-Ping, ethumela izicelo ze-Ping ezilandelanayo kuseva. Uma iseva iyeka ukuphendula kuma-pings, i-Bypass Network Tap(Bypass Switch) ingena kumodi yokudlula.
Uma iseva iqala ukuphendula futhi, i-Bypass Network Tap(Bypass Switch) ishintshela emuva kumodi yokuphuma.
Lolu hlelo lokusebenza lungasebenza kuphela nge-ICMP(Ping). Awekho amaphakethe okushaya kwenhliziyo asetshenziselwa ukuqapha ukuxhumana phakathi kweseva ne-Bypass Network Tap(Bypass Switch).
Isixazululo 2 I-Network Packet Broker + I-Bypass Network Tap(Bypass Switch)
I-Network Packet Broker(NPB) + I-Bypass Network Tap(Bypass Switch) -- Isimo esijwayelekile
Isicelo:
I-Bypass Network Tap(Bypass Switch) ixhuma kumadivayisi amabili enethiwekhi ngokusebenzisa izimbobo ze-Link kanye ne-Network Packet Broker(NPB) ngezimbobo zedivayisi. Iseva yenkampani yangaphandle ixhuma ku-Network Packet Broker(NPB) isebenzisa izintambo zethusi ezingu-2 x 1G. I-Network Packet Broker(NPB) ithumela amaphakethe okushaya kwenhliziyo kuseva ngembobo #1 futhi ifuna ukuphinda iwathole ku-port #2.
I-trigger ye-Bypass Network Tap(Bypass Switch) isethelwe ku-REST, futhi I-Network Packet Broker(NPB) isebenzisa uhlelo lokudlula.
Ithrafikhi kumodi yokuphuma:
Idivayisi 1 ↔ I-Bypass Switch/Tap ↔ NPB ↔ Iseva ↔ NPB ↔ I-Bypass Switch/Tap ↔ Idivayisi 2
I-Network Packet Broker(NPB) + I-Bypass Network Tap(Bypass Switch) -- I-Software Bypass
Incazelo ye-Bypass yesofthiwe:
Uma i-Network Packet Broker(NPB) ingawaboni amaphakethe okushaya kwenhliziyo, izonika amandla ukudlula isofthiwe.
Ukucushwa kwe-Network Packet Broker(NPB) kushintshwa ngokuzenzakalela ukuze kuthunyelwe ithrafikhi engenayo emuva ku-Bypass Network Tap(Bypass Switch), ngaleyo ndlela iphinde ifake ithrafikhi kusixhumanisi esibukhoma esinokulahlekelwa okuncane kwephakethe.
I-Bypass Network Tap(Bypass Switch) ayidingi ukuphendula nhlobo ngoba wonke ama-bypass wenziwa i-Network Packet Broker(NPB).
I-Traffic in Software Bypass:
Idivayisi 1 ↔ I-Bypass Switch/Tap ↔ NPB ↔ I-Bypass Switch/Tap ↔ Idivayisi 2
I-Network Packet Broker(NPB) + I-Bypass Network Tap(Bypass Switch) -- I-bypass bypass
Incazelo ye-Hardware Bypass:
Esimeni lapho i-Network Packet Broker(NPB) ihluleka noma ukuxhumana phakathi kwe-Network Packet Broker(NPB) kanye ne-Bypass Network Tap(Bypass Switch) kunqanyulwa, i-Bypass Network Tap(Bypass Switch) ishintshela kumodi yokudlula ukuze kugcinwe okwangempela- isixhumanisi sesikhathi sisebenza.
Lapho I-Bypass Network Tap(Bypass Switch) ingena kumodi yokudlula, i-Network Packet Broker(NPB) kanye neseva yangaphandle ziyadlulwa futhi azitholi noma iyiphi ithrafikhi kuze kube yilapho i-Bypass Network Tap(Bypass Switch) ishintshela emuva kumodi yokuphuma.
Imodi yokudlula iqaliswa lapho i-Bypass Network Tap(Bypass Switch) ingasaxhumekile kumandla kagesi.
I-Hardware engaxhunyiwe ku-inthanethi:
Idivayisi 1 ↔ I-Bypass Switch/Tap ↔ Idivayisi 2
Isixazululo 3 Ompompi Benethiwekhi Be-Bypass (Ama-Bypass Switches) kusixhumanisi ngasinye
Imiyalo yokumisa:
Kulokhu kusetha, isixhumanisi se-copper esingu-1 samadivayisi angu-2 axhunywe kuseva eyaziwayo sidlula ama-Bypass Network Taps(Ama-Bypass Switches). Inzuzo yalokhu phezu kwesixazululo se-bypass engu-1 ukuthi lapho uxhumano lwe-packet packet broker(NPB) luphazamiseka, iseva iseyingxenye yesixhumanisi esibukhoma.
2 * I-Bypass Network Taps(Ama-Bypass Switches) ngesixhumanisi ngasinye - I-Software Bypass
Incazelo ye-Bypass yesofthiwe:
Uma i-Network Packet Broker(NPB) ingawaboni amaphakethe okushaya kwenhliziyo, izonika amandla ukudlula isofthiwe. I-Bypass Network Tap(Bypass Switch) ayidingi ukusabela nhlobo ngoba wonke ama-bypass wenziwa i-Network Packet Broker(NPB).
I-bypass ye-traffic kusofthiwe:
Idivayisi 1 ↔ I-Bypass Switch/Tap 1 ↔ I-Network Packet Broker(NPB) ↔ I-Bypass Switch/Tap 2 ↔ Idivayisi 2
2 * I-Bypass Network Taps(Ama-Bypass Switches) ngesixhumanisi ngasinye - I-Hardware Bypass
Incazelo ye-Hardware Bypass:
Esimeni lapho i-Network Packet Broker(NPB) ihluleka noma ukuxhumana phakathi kwe-Bypass Network Tap(Bypass Switch) kanye ne-Network Packet Broker(NPB) kunqanyulwa, womabili ama-Bypass Network Taps(Bypass Switches) ashintshelwa kumodi yokudlula ukuze anakekele. isixhumanisi esisebenzayo.
Ngokuphambene nesilungiselelo esithi "1 Isixhumanisi ngasinye", iseva isafakiwe kusixhumanisi esibukhoma.
I-Hardware engaxhunyiwe ku-inthanethi:
Idivayisi 1 ↔ I-Bypass Switch/Tap 1 ↔Iseva ↔ I-Bypass Switch/Tap 2 ↔ Idivayisi 2
Isixazululo 4 Ompompi Benethiwekhi Be-Bypass (Ama-Bypass Switches) alungiselelwe isixhumanisi ngasinye kumasayithi amabili.
Imiyalo yokusetha:
Ongakukhetha: Ama-Network Packet Brokers(NPBs) angasetshenziswa ukuxhuma amasayithi amabili ahlukene phezu komhubhe we-GRE esikhundleni se-Network Packet Broker eyodwa(NPB). Esimeni lapho iseva exhumanisa amasayithi amabili yehluleka, izodlula iseva kanye nethrafikhi engasatshalaliswa ngomhubhe we-GRE we-Network Packet Broker(NPB) (njengoba kuboniswe kuzibalo ezingezansi).
Isikhathi sokuthumela: Mar-06-2023
