When customers deploy inline appliances on mission-critical network segments, they have the option to mitigate the risks of scheduled or unscheduled downtime of an in-line appliance for configuration changes, maintenance or repair scenarios by adding a tap/bypass switch to maintain network continuity.
Palo Alto Networks® has partnered with Garland Technology to provide the ability to install Palo Alto Networks next-generation firewall inline without compromising network uptime.Highlights
Connecting a Palo Alto Networks next-generation firewall into a network using a Garland Technology bypass TAP provides inline performance while assuring 100 percent network visibility and eliminating point-of-traffic-flow disruption. In normal operation, all network traffic passes unimpeded through the TAP and into the in-line device. Should the in-line device lose power or need to be taken offline for scheduled maintenance, the TAP will “bypass” the device and keep traffic flowing through the network. If the TAP should lose power, it will fail-safe without impacting network traffic. When the Palo Alto Networks next-generation firewall comes back online, the TAP will automatically redirect traffic through the device transparently to the network.
For full redundancy, the Garland Technology Integrated 8 port Bypass TAP allows a primary and secondary Palo Alto Networks next-generation firewall to be connected in-line while still providing full bypass protection for the network. If the primary device goes offline for any reason, the TAP will automatically redirect traffic through the secondary unit until the primary device is back online. Should the TAP lose power, it will fail-safe to ensure network connectivity. In addition, the traffic is available through two additional monitoring ports for additional tools, sniffers, probes or any other monitoring device.
100 percent network uptime while performing updates, maintenance and trouble-shooting
Installation of a bypass network TAP allows for anytime access to in-line NGFW while ensuring network uptime. Bypass network TAPs offer the flexibility to take your active, in-line NGFW offline while not interrupting live network traffic. Solutions are available in 1G, 10G or 40G and support mixed media including (1G) copper, SFP, SX, LX and ZX or (10G/40G) SFP+, SR, LR and ER.
1G or 10G High Availability (HA) with active/active and active/passive primary to backup devices
Installation of a bypass TAP provides fail safe protection for your next-generation firewall. In a high availability scenario, when the primary link goes down, traffic can automatically be forced to the secondary link. The solution also manages multiple in-band active and out-of-band monitoring tools.
As the next-generation security company, we are leading a new era in cybersecurity by safely enabling all applications and preventing advanced threats from achieving their objectives for thousands of organizations around the world. We are the fastest growing security company in the market because of our deep expertise, commitment to innovation, and game-changing security platform focused on bringing an end to the era of breaches by uniquely integrating our Next-Generation Firewall, Advanced Endpoint Protection, and Threat Intelligence Cloud. Learn more at: www.paloaltonetworks.com.
- Finding Your Blindspots - Plan for Visibility
-Managing the Edge of Your Network
- Protecting the Internal Core with Advanced Load Balancing
- The Ins and Outs - Internal vs External Network TAPs
- Network Connectivity: Basics & Beyond
- Network Connectivity & Security Solutions
- See Threats in Real Time with 100% Visibility
- Cyber Security Round Table
- Tips for Security Appliance Deployment and Migrations