Network visibility is critical for ensuring smooth IT infrastructure operation. As networks grow in size and complexity, so does the number of key capture points of network traffic. With increased capture locations, monitoring data flows effectively becomes more challenging. In this discussion, key insights into network aggregation and visibility were shared, highlighting specific places within a network where monitoring is essential.
The Evolution of Network Monitoring
Years ago, network administrators used more straightforward tools, like hubs, to capture all traffic entering and exiting the network. With increased speeds, redundancy, and complexity, modern networks require more advanced tools. Aggregating traffic from different paths to analyze them has become vital for maintaining visibility across a complex infrastructure.
This image represents the various monitoring points discussed, such as routers, servers, and wireless access points, which are critical for aggregation.
Why Aggregation is Key
Today's significant challenge for network engineers is placing monitoring tools in the right spots. Aggregation helps bring data from multiple locations, such as firewalls, routers, and wireless access points, into a single point for analysis. Aggregating traffic ensures that nothing is missed during troubleshooting, especially when packets take redundant paths across the network.
Another traditional approach, like using SPAN ports (mirroring), often results in missed packets or poor timing. Network TAPs provide more accurate visibility, capturing traffic without packet loss. They ensure that all data, including duplicates, can be reviewed in proper order.
This diagram highlights the key aggregation points in a typical network setup, demonstrating the areas where TAPs are most effective for full visibility.
Planning for Network Growth
Smaller networks may not immediately require full visibility, but as businesses grow, network complexity increases. During growth phases, planning visibility at key points, such as firewalls, servers, and wireless access points is crucial. Placing TAPs at these points ensures monitoring is maintained without disrupting the network.
.png?width=800&height=493&name=Physical-Envoirment-graph-1%20(1).png)
A visual breakdown of how networks evolve from small setups to more complex infrastructures and the points where aggregation becomes essential.
With the adoption of faster network speeds (e.g., 100G, 400G), the need for tools that can handle and filter high-speed traffic becomes increasingly important. Aggregation will play a key role in managing data at these speeds while maintaining accurate visibility for analysis.
Balancing Costs and Coverage
Balancing cost with coverage is critical when introducing traffic aggregation. Smaller setups can start with low-cost aggregation devices that combine multiple links into a single analysis point. Businesses can incrementally invest in more comprehensive monitoring solutions as the network scales.
|
Booster In-line |
Booster SPAN |
Dual Output Booster |
|
|
|
|
|
Aggregation of 8 ports (4 in-line links) RJ45 10/100/1G into 1 SFP+ 1G-10G output Direct link aggregation, no required management, installation or driver Ingress VLAN Tagging Data Diode function Non-intrusive to the network Supports link failure propagation PoE passthrough Redundant powering The fail-safe in-line design ensures uninterrupted network operation in case of power loss Network ports are galvanically separated from the monitor port for maximum security Low power consumption |
Aggregation of 8 SFP 10/100/1G SPAN ports into 1 SFP+ 1G/10G output Non-intrusive to the network Ingress VLAN Tagging Data Diode function Redundant powering 100FX support Direct link aggregation, no required management, installation or driver Low power consumption |
Dual output variants are available for both the in-line and SPAN models.
This allows two separate tools to receive the same replicated copy of all traffic aggregated by the TAP, such as an OT security system sensor and a network analysis tool. 2 x SFP+ 1G/10G outputs. It has the same features as the single output variants. |
Network visibility is essential for smooth IT operations as networks grow in size and complexity. Aggregation tools placed at key points like routers, servers, and firewalls ensure full monitoring, while Network TAPs capture data accurately, avoiding missed packets. This visibility planning helps businesses scale while balancing monitoring costs with network coverage. Watch Roland Knall and Mike Pennacchi's discussion on the Profitap Talks to learn more about these topics.
