Patent•
Network tap for use with multiple attached devices
13 Dec 2003-
TL;DR: In this article, the authors proposed a network tap for enabling attached devices such as an intrusion detection system to transmit information into a communication line of the network without disrupting the network traffic on the communication line.
Abstract: A network tap for enabling attached devices, such as an intrusion detection system, to transmit information into a communication line of the network without disrupting the network traffic on the communication line. When the attached device is an intrusion detection device, the network tap is connected to a firewall. An Ethernet switch or field programmable gate array (FPGA) is incorporated in the network tap to coordinate the transmission of device data to avoid data collisions with data transmissions already existing in the communication line. The network tap may be operated in various modes to accommodate different capabilities of attached devices. In addition, the network tap has various port configurations to allow a user to connect various attached devices through a single cable or dual cables and to connect various combinations of attached devices.
Citations
More filters
Patent•
31 May 2006TL;DR: In this paper, a network tap device that is configured for operation in a copper Gigabit Ethernet communications network using a power-over-Ethernet (POE) electrical supply is disclosed.
Abstract: A network tap device that is configured for operation in a copper Gigabit Ethernet communications network using a power-over-Ethernet (“POE”) electrical supply is disclosed. In one embodiment, a network tap device powered by a POE supply is disclosed, comprising first and second network ports that are configured with receptacles for receiving communication cables. The communication cables are configured to carry both data signals and the POE supply to and from the network tap device. The network tap device further includes first and second tap ports that connect with additional communication cables to a monitoring device. The network tap device also includes control and regulation circuitry that is configured to receive the POE supply from the communication cables via the network ports and to enable components of the network tap device to be operated by the POE supply.
75 citations
Patent•
05 Jun 2008
TL;DR: In this paper, a network data monitoring device is constructed utilizing one or more switching integrated circuits programmed to disable layer-2 routing and impose port-to-multiport data packet steering.
Abstract: A network data monitoring device provides for the flexible, programmable port-to-multi-port steering of data packet traffic between network port pairs, with tap data streams being directed to any of a plurality of monitor ports. The network data monitoring device is constructed utilizing one or more switching integrated circuits programmed to disable layer-2 routing and impose port-to-multiport data packet steering. Physical layer protocol encoding/decoding circuits enable connectivity to physical network media connectors though a system of fail-safe relays. A system controller, preferably implemented by a microprocessor, is connected to all switching integrated circuits and relays for configuration, status and control. Hardware-based logic selectively in complement to the switching integrated circuits provides for the programmable filtering, modification and programmable steering of data packets through the device.
65 citations
Patent•
28 Apr 2004
TL;DR: In this paper, the authors propose to reduce or eliminate the impedance change in the tap circuitry to eliminate the disruptive interruptions caused by the power to the tap's circuit when the tap is either turned on or off.
Abstract: A network tap monitors network information flow over a particular connection. By duplicating the signal and diverting a copy, the information flow can be analyzed, both in real time and without interference through the monitoring process. When the power to the tap is either turned on or off, however, the change in impedance in the tap's circuit can create an interference spike in the connection that interrupts the information flow. By reducing or eliminating the impedance change in the tap circuitry, such disruptive interruptions can be eliminated.
62 citations
Patent•
31 May 2006TL;DR: In this paper, a network tap device array capable of being powered by a power-over-Ethernet (POE) supply is presented, which enables data from multiple nodes in a communications network to be tapped and forwarded to a plurality of monitoring devices.
Abstract: A network tap device array capable of being powered by a power-over Ethernet (“POE”) supply is disclosed. The array enables data from multiple nodes in a communications network to be tapped and forwarded to a plurality of monitoring devices. In one embodiment the network tap device array includes a chassis that is configured to receive a plurality of network tap devices that are each powered by a POE supply. Each network tap device includes network ports for receiving and transmitting network data via communication cables and tap ports for forwarding the tapped network data to the monitoring device. In another embodiment, a sub-chassis includes a plurality of network tap devices and an aggregator that aggregates tapped data from each of the tap devices. The aggregator then forwards the aggregated data to the monitoring device. The sub-chassis can be included in a chassis that is configured to receive multiple populated chassis.
45 citations
Patent•
07 Mar 2006
TL;DR: In this article, a number of device interface terminals for receiving network feeds, a tap structure coupled with device interfaces, the tap structure configured to monitor the second network feeds and to aggregate the network feeds into an aggregated network feed, a monitor interface terminal coupled to the tap structures for providing the aggregated data to a network monitor, and a display coupled with the tap and configured to display selected network parameters corresponding to network feeds.
Abstract: Intelligent network tap port aggregators for use in monitoring a network and methods for use therein are presented including: a number of device interface terminals for receiving network feeds; a tap structure coupled with device interface terminals, the tap structure configured to monitor the second network feeds and to aggregate the network feeds into an aggregated network feed; a monitor interface terminal coupled to the tap structure for providing the aggregated network feed to a network monitor; and a display coupled to the tap structure and configured to display selected network parameters corresponding to the network feeds. In some embodiments, the intelligent network tap port aggregator also includes: a network controller coupled with the tap structure for providing communication between the tap structure and a number of managing devices; and a managing device interface coupled with the network controller for providing Internet access to the network controller.
42 citations
References
More filters
Patent•
28 Aug 1998TL;DR: In this paper, a secured network system consisting of a readykey controller and a power relay switch is described, where the user inserts a microchip embedded card into the first card reader and transmits an authorization signal to the ready key controller.
Abstract: A secured network system comprising a readykey controller which has a first card reader and a power relay switch connected thereto. The user of the stem inserts a microchip embedded card into the first card reader which then transmits an authorization signal to the readykey controller. The readykey controller then activates a power relay switch affixed to the computer which connects the computer's power supply to an external power source activating the computer. The secured network system also has a data relay switch which includes a manual A/B secured network switch. The manual A/B switch allows the user to receive and process classified data, by setting the switch to a predetermined position which connects a secured network server to the computer. The user inserts his proximity card into a second card reader which transmits a second authorization signal to the readykey controller. The readykey controller, responsive to the second authorization signal, activates the data relay switch. Activating the data relay switch connects the secured network switch to the secured network server via the data relay switch which allows for the transmission of classified data between the secured network server and the personal computer.
33 citations
Patent•
30 Jul 2003
TL;DR: In this article, a network monitor that taps data from a network link has first and second interfaces that allow the network monitor to be connected in-line in the network link between two network devices.
Abstract: A network monitor that taps data from a network link has first and second interfaces that allow the network monitor to be connected in-line in the network link between two network devices. The monitor has first and second programmable logic devices. The programmable logic devices are arranged to receive parallel data output by the interfaces and to process said data for network analysis purposes. Each programmable logic device is controllable so as to selectively pass a copy of the received parallel data to the other programmable logic device so that the network monitor can operate in in-line mode and not to pass a copy of the received parallel data to the other programmable logic device so that the network monitor can operate in end station mode.
17 citations