Network TAPs for 100% traffic visibility
The term TAP is an abbreviation and stands for Test Access Port. A network TAP, also called Ethernet TAP, establishes a passive access point to a network connection, with which the transmitted data signals (bit/byte/packet) can be read and evaluated for analysis purposes. Once installed, these TAPs can be used to quickly, easily and inexpensively provide network data for various applications.
Network TAPs usually have four physical ports and are transparently looped into the network line to be analyzed. The network data transmitted on the network ports is mirrored to the monitoring interfaces. A TAP works on the OSI Layer1, does not have a MAC address and enables a 100% insight into the network events due to this technology. Since every single transmitted network packet is copied out of the line, the information can be precisely analyzed without affecting the network performance and archived and evaluated for audit-proof network forensics while ensuring full data integrity.
Technical Advantages of Network TAPs
- Network TAPs do not affect the function of the active network cable under any circumstances.
- 100% transparent and invisible to hackers and other attackers
- Network TAPs are passive and behave like a cable bridge (fail-closed) in case of an error.
- Completely derive the network data
- Ensure full data integrity
- Network packets with FCS/CRC errors are also rejected.
- Non-compliant data according to IEEE 802.3 are copied out
- Works protocol independent and supports jumbo frames
- Classical network TAPs extract data in full duplex mode
- Overbooking of outbound ports excluded
- No tedious configuration necessary, once installed, it delivers the desired data
- Measurement and analysis errors due to incorrect packet sequence excluded
- Configuration errors excluded, as commissioning takes place via Plug'n'Play
- Media-converting network TAPs available for the widest range of applications
If you have performance problems in the network or already a failure, fast action is usually called for. In such situations you have little time to configure SPAN ports and want to start troubleshooting immediately. But what if no SPAN port is available at this time or the password to the switch is not available?
But it can also get a lot worse, because the switch is busy by a DDoS attack or a bandwidth-intensive application, which makes an analysis at the SPAN port virtually impossible. It could also happen that the switch is not available in the usual way due to a malicious attack. Network TAPs are indispensable, especially for security reasons or to investigate industrial espionage, because they extract the data on the physical level, no matter what happens in the network, and thus always allow reliable network analysis and monitoring.
Application examples of network TAPs:
- Proactive Network Monitoring
- capacity planning
- Base Lining (network analysis, capacity planning, etc.)
- Security and network forensics
- Network analysis and troubleshooting
- Network and Application Performance Monitoring
- Lawful interception (legally compliant monitoring)
- SLA monitoring
- compliance monitoring
- database monitoring
More information about this and other network analysis products can be found at https://www.neox-networks.com/.