Use Case 1: Gigabit Multi-TAP Network Monitor / Capture Across a Firewall Device

The following use case depicts how to setup a "Multi-TAP" configuration to monitor / capture network packets on both sides of a Firewall. Two Dualcomm Technology, Inc gigabit switch TAPs (model: DGCS-2005L) are placed on each side of the Firewall / Router. NST running on a system configured with three NICs can be used to perform a variety of network / security tasks with network traffic entering or leaving the Small and Medium Business (SMB) or Corporate Intranet. Example usage: NAT and PAT network packets can be examined for proper translations by the Firewall and network bandwidth and throughput monitoring can be performed in real-time. The NST WUI Multi-TAP Network Packet Capture interface was designed to simultaneously capture packets with this configuration.

Use Case 2: Gigabit SPAN Port Repilcation Using Regeneration TAPs

The following use case depicts how to replicate SPAN ports using a Dualcomm Technology, Inc gigabit Regeneration TAPs (model: ETAP-2105). A SPAN port enabled on both the Firewall and the LAN Gigabit Switch are fed into Port: 1 of each regeneration TAP. Full-duplex network SPAN traffic is replicated at Gigabit rates between the inline port (Port: 1) across the four monitor ports (Ports: 2, 3, 4 and 5). A total of six (6) NST probe servers with their respective network security application are shown.

The NST WUI Multi-TAP Network Packet Capture interface was specifically designed to simultaneously capture packets with this particular configuration using traffic generated from both SPAN ports on NST probe: 4. Wireless network packets from the WAN to the wireless device can be simultaneously captured. Separate network security monitoring systems as shown in this diagram may be a requirement for certain organizations.