I-Bypass TAP (ebuye ibizwe ngokuthi i-bypass switch) inikeza izimbobo zokufinyelela ezingehluleki kumadivayisi okuphepha ashumekiwe asebenzayo njenge-IPS kanye nezinqamuleli zomlilo zesizukulwane esilandelayo (NGFWS).I-bypass switch isetshenziswa phakathi kwamadivayisi enethiwekhi naphambi kwamathuluzi okuphepha enethiwekhi ukuze kunikeze iphuzu elithembekile lokuzihlukanisa phakathi kwenethiwekhi nesendlalelo sokuvikela.Baletha ukwesekwa okugcwele kumanethiwekhi namathuluzi okuphepha ukuze bagweme ubungozi bokunqamuka kwenethiwekhi.
Isixazululo 1 1 Xhumanisa I-Bypass Network Tap(Bypass Switch) - Ezizimele
Isicelo:
I-Bypass Network Tap(Bypass Switch) ixhuma kumadivayisi enethiwekhi amabili ngezimbobo ze-Link futhi ixhumeka kuseva yenkampani yangaphandle ngezimbobo zeDivaysi.
I-trigger ye-Bypass Network Tap(Bypass Switch) isethelwe ku-Ping, ethumela izicelo ze-Ping ezilandelanayo kuseva.Uma iseva iyeka ukuphendula kuma-ping, i-Bypass Network Tap(Bypass Switch) ingena kumodi yokudlula.
Uma iseva iqala ukuphendula futhi, i-Bypass Network Tap(Bypass Switch) ishintshela emuva kumodi yokuphuma.
Lolu hlelo lokusebenza lungasebenza kuphela nge-ICMP(Ping).Awekho amaphakethe okushaya kwenhliziyo asetshenziselwa ukuqapha ukuxhumana phakathi kweseva ne-Bypass Network Tap(Bypass Switch).
Isixazululo 2 I-Network Packet Broker + I-Bypass Network Tap(Bypass Switch)
I-Network Packet Broker(NPB) + I-Bypass Network Tap(Bypass Switch) -- Isimo esijwayelekile
Isicelo:
I-Bypass Network Tap(Bypass Switch) ixhuma kumadivayisi amabili enethiwekhi ngokusebenzisa izimbobo ze-Link kanye ne-Network Packet Broker(NPB) ngezimbobo zedivayisi.Iseva yenkampani yangaphandle ixhuma ku-Network Packet Broker(NPB) isebenzisa izintambo zethusi ezingu-2 x 1G.I-Network Packet Broker(NPB) ithumela amaphakethe okushaya kwenhliziyo kuseva ngembobo #1 futhi ifuna ukuphinda iwathole ku-port #2.
I-trigger ye-Bypass Network Tap(Bypass Switch) isethelwe ku-REST, futhi I-Network Packet Broker(NPB) isebenzisa uhlelo lokudlula.
Ithrafikhi kwimodi yokuphuma:
Idivayisi 1 ↔ I-Bypass Switch/Tap ↔ NPB ↔ Iseva ↔ NPB ↔ I-Bypass Switch/Tap ↔ Idivayisi 2
I-Network Packet Broker(NPB) + I-Bypass Network Tap(Bypass Switch) -- I-Software Bypass
Incazelo ye-Bypass yesofthiwe:
Uma i-Network Packet Broker(NPB) ingawaboni amaphakethe okushaya kwenhliziyo, izonika amandla ukudlula isofthiwe.
Ukucushwa kwe-Network Packet Broker(NPB) kushintshwa ngokuzenzakalela ukuze kuthunyelwe ithrafikhi engenayo emuva ku-Bypass Network Tap(Bypass Switch), ngaleyo ndlela iphinde ifake ithrafikhi kusixhumanisi esibukhoma esinokulahlekelwa okuncane kwephakethe.
I-Bypass Network Tap(Bypass Switch) ayidingi ukuphendula nhlobo ngoba wonke ama-bypass wenziwa i-Network Packet Broker(NPB).
I-Traffic in Software Bypass:
Idivayisi 1 ↔ I-Bypass Switch/Tap ↔ NPB ↔ I-Bypass Switch/Tap ↔ Idivayisi 2
I-Network Packet Broker(NPB) + I-Bypass Network Tap(Bypass Switch) -- I-bypass bypass
Incazelo ye-Hardware Bypass:
Esimeni lapho i-Network Packet Broker(NPB) ihluleka noma ukuxhumana phakathi kwe-Network Packet Broker(NPB) kanye ne-Bypass Network Tap(Bypass Switch) kunqanyulwa, i-Bypass Network Tap(Bypass Switch) ishintshela kumodi yokudlula ukuze kugcinwe okwangempela- isixhumanisi sesikhathi sisebenza.
Lapho I-Bypass Network Tap(Bypass Switch) ingena kumodi yokudlula, i-Network Packet Broker(NPB) kanye neseva yangaphandle ziyadlulwa futhi azitholi noma iyiphi ithrafikhi kuze kube yilapho i-Bypass Network Tap(Bypass Switch) ishintshela emuva kumodi yokuphuma.
Imodi yokudlula iqaliswa lapho i-Bypass Network Tap(Bypass Switch) ingasaxhumekile kumandla kagesi.
I-Hardware engaxhunyiwe ku-inthanethi:
Idivayisi 1 ↔ I-Bypass Switch/Tap ↔ Idivayisi 2
Isixazululo 3 Ompompi Benethiwekhi Be-Bypass (Ama-Bypass Switches) kusixhumanisi ngasinye
Imiyalo yokumisa:
Kulokhu kusetha, isixhumanisi se-copper esingu-1 samadivayisi angu-2 axhunywe kuseva eyaziwayo sidlula ama-Bypass Network Taps(Ama-Bypass Switches).Inzuzo yalokhu phezu kwesixazululo se-bypass engu-1 ukuthi uma uxhumano lwe-packet packet broker(NPB) luphazamiseka, iseva iseyingxenye yesixhumanisi esibukhoma.
2 * I-Bypass Network Taps(Ama-Bypass Switches) ngesixhumanisi ngasinye - I-Software Bypass
Incazelo ye-Bypass yesofthiwe:
Uma i-Network Packet Broker(NPB) ingawaboni amaphakethe okushaya kwenhliziyo, izonika amandla ukudlula isofthiwe.I-Bypass Network Tap(Bypass Switch) ayidingi ukusabela nhlobo ngoba wonke ama-bypass wenziwa i-Network Packet Broker(NPB).
I-bypass ye-traffic kusofthiwe:
Idivayisi 1 ↔ I-Bypass Switch/Tap 1 ↔ I-Network Packet Broker(NPB) ↔ I-Bypass Switch/Tap 2 ↔ Idivayisi 2
2 * I-Bypass Network Taps(Ama-Bypass Switches) ngesixhumanisi ngasinye - I-Hardware Bypass
Incazelo ye-Hardware Bypass:
Esimeni lapho i-Network Packet Broker(NPB) ihluleka noma ukuxhumana phakathi kwe-Bypass Network Tap(Bypass Switch) kanye ne-Network Packet Broker(NPB) kunqanyuliwe, womabili ama-Bypass Network Taps(Bypass Switches) ashintshelwa kumodi yokudlula ukuze anakekele. isixhumanisi esisebenzayo.
Ngokuphambene nesilungiselelo esithi "1 Isixhumanisi ngasinye", iseva isafakiwe kusixhumanisi esibukhoma.
I-Hardware engaxhunyiwe ku-inthanethi:
Idivayisi 1 ↔ I-Bypass Switch/Tap 1 ↔Iseva ↔ I-Bypass Switch/Tap 2 ↔ Idivayisi 2
Isixazululo 4 Ompompi Benethiwekhi Be-Bypass (Ama-Bypass Switches) alungiselelwe isixhumanisi ngasinye kumasayithi amabili.
Imiyalo yokusetha:
Ongakukhetha: Ama-Network Packet Brokers(NPBs) angasetshenziswa ukuxhuma amasayithi amabili ahlukene phezu komhubhe we-GRE esikhundleni se-Network Packet Broker eyodwa(NPB).Esimeni lapho iseva exhumanisa amasayithi amabili yehluleka, izodlula iseva kanye nethrafikhi engasatshalaliswa ngomhubhe we-GRE we-Network Packet Broker(NPB) (njengoba kuboniswe kuzibalo ezingezansi).
Isikhathi sokuthumela: Mar-06-2023
