Visibility Solutions

Garland Technology is committed to educating the benefits of having a strong foundation of network visibility and access. By providing this insight we protect the security of data across your network and beyond.


Garland Technology's resource library offers free use of white papers, eBooks, use cases, infographics, data sheets, video demos and more.


The TAP into Technology blog provides the latest news and insights on network access and visibility, including: network security, network monitoring and appliance connectivity and guest blogs from Industry experts and technology partners


Our extensive technology partnership ecosystem solves critical problems when it comes to network security, monitoring, application analysis, forensics and packet inspection.


Garland Technology is dedicated to high standards in quality and reliability, while delivering the greatest economical solutions for enterprise, service providers, and government agencies worldwide.


Whether you are ready to make a network TAP your foundation of visibility or just have questions, please contact us. Ask us about the Garland Difference!

Network TAPs

Providing 100% visibility, in real time, all the time

Contact Us

Network Test Access Point (TAP)

Guaranteed 100% data capture

Test Access Points (TAPs) are a simple concept. A network TAP is a purpose-built hardware device that allows you to access and monitor your network traffic by copying packets without impacting or compromising network integrity. The TAP allows network traffic to flow from ports A to B, and B to A without interruption, creating an exact copy of both sides of the traffic flow, continuously, 24/7, 365. The duplicate copies can be used for monitoring, security and analysis.

Network TAPs Flow Diagram

Network visibility is more critical than ever. Networks are getting more complex with higher speeds carrying an increasingly unprecedented amount of data, in addition to the increased threat of sophisticated cyber security risks. With the growing number of analysis and security tools needed to process this data, a granular visibility approach into the actual packets running on the wire is a must.

“EMA recommends that enterprises use TAPs as much as possible in the access layer to avoid network performance impacts and assure packet fidelity.”
-EMA [Enterprise Management Associates]

Let’s go over the basics and industry best practices.

How do Network TAPs work?

Instead of two segments, say a router and switch, connected directly to each other, a network TAP is placed in between them connecting both devices.

As we mentioned, network TAPs provide complete unfiltered access to bi-directional traffic streams. The data is transmitted between the two network devices (ie. routers and switches) in both directions, east and west traffic. TAPs copy the transmit signals from each device and sends them to separate monitoring ports. This ensures every packet is copied and eliminates any chance of oversubscription.

East-West Traffic

Figure 1. East / West traffic flow.

TAP Breakout mode

Figure 2. East / West traffic flow with tap in TAP "Breakout" mode.



Different Types of TAPs

Network TAPs come in variety of different functions and features. Each type of network TAP operates differently based on the requirements it needs to perform.

  • Passive TAPs: Support out-of-band “listen-only” devices used for monitoring tools, and are simple, reliable and require no power.
  • Active TAPs: Support additional functionality like aggregation and regeneration as well as advanced functions like filtering and bypass. Active TAPs include failsafe technology to protect against device or power failure.
  • TAPs are available in various media types: copper or fiber (LC, MTP/MPO, BiDi), and can perform Media Conversion.
  • TAPs are available in various speeds: from 10/100/1000M all the way to 100G.
  • TAPs form factors: including portable, modular and high density in 1U and 2U chassis.


Even Cisco agrees, if you're still using SPAN / Mirror ports you do not have 100% network access or visibility.

"The switch treats SPAN data with a lower priority than to-port data...the best strategy is to make decisions based on the traffic levels of the configuration and when in doubt to use the SPAN port only for relatively low throughput situations." -Cisco


Want more info?

TAP Modes

Breakout Mode
Tap "Breakout" Mode
Aggregation Mode
Aggregation Mode
Bypass Mode
Regeneration/SPAN Mode
Regeneration/SPAN Mode
Filter + Aggregation

TAP Modes Overview

Network TAPs can perform multiple functions and modes within the same device, including:

  • Tap 'Breakout': Sends each side of traffic to separate monitoring ports. Ensuring that no packet is lost to high-priority monitoring tools.
  • Aggregation: Merge traffic streams into one monitoring port to reduce appliance costs, often used in combination with filtering taps, ie: filter, aggregate data streams. 
  • Bypass: Prevent inline devices from causing network downtime by “bypassing” that device, in the event it fails or needs to be updated.
  • Regeneration/SPAN: Create multiple copies of network data to support multiple devices from a single connectivity point.
  • Filtering: Allow you to set rules on what data is filtered and sent to monitoring or security tools. Filtering prevents ports from becoming oversubscribed.

Network TAPs 101

The Networking User Guide

Providing unfettered access to all of the bits, bytes and packets flowing through a network is a critical piece of network design. Without it, security appliances, monitoring devices and analytical solutions cannot function optimally – a critical issue in a world where downtime or a security breach could cost millions. Want to dig deeper on the basics? Start here.

Learn More

Network TAPs 101

Industry Best Practice

  • Creating a foundation of visibility is key for network management. Once deployed, a TAP allows you to access that point in your network at any time. Many organizations have adopted the stance of tapping all critical links for easy access during troubleshooting or security breaches now or in the future.
  • The two most common ways to access and replicate data within your network are TAP and SPAN technology. A Test Access Point (TAP) is a hardware device that copies all of your network data. SPAN or Switch Port Analyzer are mirroring ports within a switch that copies specific data. Read more about TAP vs SPAN here.
  • The recommended deployment of Network TAPs are during the infrastructure build-out or scheduled around maintenance windows.
  • Do a little research, as not all TAPs are equal. Before making a decision on which TAP to go with, look into the quality, testing, where they are manufactured, hardware warranties, optical transceivers, Mean Time Between Failure (MTBF) rates and first time pass rate (FTPR).
  • A common TAP misconception is that it’s an unnecessary point of failure. Most TAP failures can be traced to improper cabling, unclean connectors or user error. With a zero failure rate, Garland Technology tests and verifies all TAPs with live network data ensuring your network has full access and visibility.
  • Some Active TAPs offer battery backup to extend usage during power failures. We do not recommend this due to the dangers associated with having lithium ion batteries in your network. Most high quality TAPs have power failsafe and do not need any power source, or they have a backup AC source.

Network TAP Form Factors

Portable TAP
Modular TAP - 2U Chassis
High Density - Chassis System
Portable TAP
Modular TAP - 1U/2U Chassis
High Density - Chassis System

TAP into Technology | The 101 Series

Leading the way in Network Technology
The 101 Series: Quick Connect Tips for Inline Security Appliances

The 101 Series: Quick Connect Tips for Inline Security Appliances

You just bought a brand new inline security appliance—a next-gen firewall, intrusion prevention system (IPS), data leakage prevention (DLP) system or web application firewall—and you’re ready to

The 101 Series: Breakout Network TAPs

The 101 Series: Breakout Network TAPs

I recently wrote a blog about the six different types of network TAPs with a brief overview of each TAPs functionality. In this blog, I’m going to explain in detail more about how the breakout or

The 101 Series: Network Packet Brokers

The 101 Series: Network Packet Brokers

Understanding and maintain control of your network is a constant, uphill battle. With the increase in network virtualization, BYOD, and growing number of security threats, network monitoring is more