Patent•
Network tap for use with multiple attached devices
13 Dec 2003-
TL;DR: In this article, the authors proposed a network tap for enabling attached devices such as an intrusion detection system to transmit information into a communication line of the network without disrupting the network traffic on the communication line.
Abstract: A network tap for enabling attached devices, such as an intrusion detection system, to transmit information into a communication line of the network without disrupting the network traffic on the communication line. When the attached device is an intrusion detection device, the network tap is connected to a firewall. An Ethernet switch or field programmable gate array (FPGA) is incorporated in the network tap to coordinate the transmission of device data to avoid data collisions with data transmissions already existing in the communication line. The network tap may be operated in various modes to accommodate different capabilities of attached devices. In addition, the network tap has various port configurations to allow a user to connect various attached devices through a single cable or dual cables and to connect various combinations of attached devices.
Citations
More filters
Patent•
JDSU1
TL;DR: In this article, a passive signal separator is configured to receive a data stream from at least one of the first or second network ports and pass through the data stream and a first signal portion comprising at least the first signal component and a second signal component comprising at most the second component.
Abstract: A passive full-duplex bidirectional ZPL tap includes first and second network ports and first and second tap ports. A passive signal separator is configured to receive a data stream from at least one of the first or second network port and pass through the data stream and a first signal portion comprising at least the first signal component and a second signal portion comprising at least the second signal component. A first receive only physical interface device (Phy) is configured to receive the first signal portion from the signal separator and provide the first portion to the first tap port and a second receive only Phy is configured to receive the second signal portion from the signal separator and provide the second signal portion to the second tap port.
27 citations
Patent•
09 Jan 2012
TL;DR: In this article, an integrated switch tap device for managing and monitoring network traffic is provided, which includes a set of network ports for receiving and outputting the network traffic, also includes a first logic arrangement for performing routing functionalities and a first CPU for processing the routing functions.
Abstract: An integrated switch tap device for managing and monitoring network traffic is provided. The device includes a set of network ports for receiving and outputting the network traffic. The device also includes a first logic arrangement for performing routing functionalities and a first CPU for processing the routing functionalities. The device further includes a set of monitoring ports that is coupled to one or more monitoring devices. The device yet also includes a first tap module, which is configured at least for intercepting at least part of the network traffic flowing through the network device, creating a copy of at least part of the network traffic, and forwarding the copy to at least one of the set of monitoring ports. The device moreover includes a second CPU configured at least for processing tap functionalities associated with the first tap module.
25 citations
Patent•
27 Jul 2006
TL;DR: In this paper, a method and system for protecting a packet switched network from compromised communications due to a physical intrusion in the network are disclosed, which can be automatically implemented by a given network-connected device or manually addressed by a network user or network administrator.
Abstract: A method and system for protecting a packet switched network from compromised communications due to a physical intrusion in the network are disclosed. The network includes at least one network element having a detection device operable to detect a possible physical intrusion in a data communication path connected to the network element. The method includes receiving a notification from the detection device that the detection device has identified a physical intrusion in the data communication path, generating an alert, and transmitting the alert over the packet switched network. The alert may include instructions on how to remediate the physical intrusion that can be automatically implemented by a given network-connected device or manually addressed by a network user or network administrator.
23 citations
Patent•
07 Aug 2007
TL;DR: In this article, a power supply arrangement for providing power to circuitry of the network device is provided, which includes a set of network ports for receiving the data traffic, and output nodes for outputting the data data from the network devices.
Abstract: An arrangement in a network device for displaying statistical data pertaining to data traffic that traverses the network device is provided. The arrangement includes a power supply arrangement for providing power to circuitry of the network device. The arrangement also includes a set of network ports, which includes a set of input network ports for receiving the data traffic and a set of output network ports for outputting the data traffic from the network device. The arrangement further includes logic arrangement for analyzing data traffic and for displaying statistical data pertaining to the data traffic. The arrangement yet also includes a visual display arrangement, which is configured to display the statistical data, whereas the data traffic is configured to traverse the network device between the set of input network ports and the set of output network ports irrespective whether power is provided to the circuitry of the network device.
22 citations
Patent•
12 Feb 2010
TL;DR: In this paper, a director device arrangement for performing a plurality of monitoring functions on data traffic traversing through a network is provided. But it is not specified whether power is provided to the circuitry, the processor module, and the set of switch modules.
Abstract: A director device arrangement for performing a plurality of monitoring functions on data traffic traversing through a network is provided. The director device arrangement includes a power module, a processor module, a set of network ports, a set of switch modules, and at least one monitoring ports. The set of switch modules is configured to include at least a first switch module and a second switch module that interact with one another to perform the plurality of monitoring functions on the data traffic received. The at least one monitoring port is configured to receive at least one of the data traffic traversing through the network, whereas the data traffic is configured to traverse the director device arrangement between the set of network ports irrespective whether power is provided to the circuitry, the processor module, and the set of switch modules of the director device arrangement.
22 citations
References
More filters
Patent•
11 Mar 1991
TL;DR: In this article, a network switching system consisting of a first port coupled to a source, a second port coupled with a destination, and multiplexer means coupled to the first port and the second port for transferring data is described.
Abstract: A network switching system is described. The network switching system comprises a first port coupled to a source, a second port coupled to a destination, and multiplexer means coupled to the first port and the second port for transferring data between the first port and the second port by selectively connecting the first port with the second port. The data is transferred from the source to the destination through the first port, the multiplexer means, and the second port. The network switching system further includes processing means coupled to the multiplexer means for assisting transmission of the data by receiving the data from the first port when the first port does not indicate a port for the destination. A method of transferring data from a source to a destination via a network switching system is also described.
272 citations
Patent•
24 Feb 1997
TL;DR: In this paper, a bi-directional network medium monitor including a tap apparatus connected inserted in a network media, including a transceiver and a clock recovery element for each medium and medium monitor connection, is presented.
Abstract: A bi-directional network medium monitor including a tap apparatus connected inserted in a network media, e.g. Fiber Optic (FX) and Twisted Pair (TX), comprising a transceiver and a clock recovery element for each medium and medium monitor connection, and a bi-directional serial data multiplexer which directs the medium data while in the serial data format. Also, the medium monitor may interrupt medium data transfer in either medium direction and insert its data for diagnostic or other network purposes. Thus, the apparatus according to the present invention is operable to monitor a network at the maximum data rates currently used while providing no significantly network data delay.
246 citations
Patent•
25 Jul 1994TL;DR: In this paper, an ATM switch is used to combine blocks of data from multiple data servers into a single continuous data stream, which is especially well adapted for use in a video-on-demand environment.
Abstract: An ATM switch is used to combine blocks of data from multiple data servers into a single continuous data stream. The ATM switch is especially well adapted for use in a video-on-demand environment. Blocks of data may be striped across the data servers so that they are output from respective data servers in sequence. Transmission of data from the data servers to the ATM switch is scheduled so that the blocks of data are output in sequence without undue delay between the transmission of blocks of data from the servers. Synchronizing tokens are provided to the data servers to specify that they are to output data of a given sequence and to direct the sequence to a given virtual channel. As a result, the system of this invention appears to output single continuous data streams from the output ports of the ATM switch.
97 citations
Patent•
08 Mar 1995TL;DR: In this paper, a line interface is provided for performing a switching process of a fixed length cell consisting of data and a cell header, where individual units are individually connected to the plurality of lines accommodated therein and individually process the cells.
Abstract: Switching equipment in provided for performing a switching process of a fixed length cell consisting of data and a cell header. A line interface provided in the switching equipment accommodates a plurality of lines and, at the same time, processes the data from each line on a cell unit. The line interface includes individual units and a common unit. The individual units are individually connected to the plurality of lines accommodated therein and individually process the cells. The common unit is connected to the individual units and, at the same time, effects batch-processing of the cells processed by the individual units.
52 citations
Patent•
29 Jan 1997TL;DR: In this article, a method and apparatus for monitoring data sent between a source node and destination node in a switched network is presented, wherein the switches configure themselves to establish a connection path to a probe switch to receive the monitored data.
Abstract: A method and apparatus for monitoring data sent between a source node and destination node in a switched network, wherein the switches configure themselves to establish a connection path to a probe switch to receive the monitored data. The source and destination are identified along with the probe switch. An originating switch on a path between the source and destination is identified and connections between the originating switch and the probe switch are established. The originating switch sends out a first message and when the probe switch receives the first message, it returns a second message to the originating switch. Each switch between the originating switch and the probe switch that receives the first and second messages configures itself to establish the connection path.
50 citations