What is a bypass switch?

A bypass switch (or bypass network TAP) is a simple piece of hardware that allows you to connect in-line security tools to your network – without the risk of network downtime. It provides a fail-safe access port for an in-line active security appliance such as an intrusion prevention system (IPS), next generation firewall (NGFW), etc.

Active, in-line security appliances are single points of failure in live computer networks because if the appliance loses power, experiences a software failure, or is taken off-line for updates or upgrades, traffic can no longer flow through the critical link. The bypass switch or bypass TAP removes this point of failure by automatically 'switching traffic via bypass mode' to keep the critical network link up. These switches safeguard a network with automated failover protection, preventing temporary tool outages from escalating into costly network outages.

A bypass switch has four ports. Two network ports create an in-line connection in the network link that is to be monitored. This connection is fully passive; if the bypass switch itself loses power, traffic continues to flow unimpeded through the link. Two monitor ports are used to connect the in-line monitoring appliance. During normal operation, the bypass switch passes all network traffic through the appliance as if it were directly in-line itself. But when the in-line appliance loses power, is disconnected, or otherwise fails the bypass switch passes traffic directly between its network ports, bypassing the appliance, and ensuring that traffic continues to flow on the network link.

Bypass switches can detect when an in-line tool has failed or lost power through heartbeat packets. Heartbeat packets are signals sent from the bypass switch, through the in-line tool at regular intervals. If a packet doesn’t make it back to the bypass switch, the in-line tool is assumed to have failed, and network traffic is rerouted.

Cubro Bypass Switches are deployed between network devices and in front of security tools, providing a reliable separation point between the network and security layers. They lead to comprehensive support of network and security tools without the risk of network interruptions. Bypass Switches enable multiple security tools to process traffic from a single network link.

Advantages of using Cubro external bypass switch:

• Keeps network traffic flowing when the in-line appliance fails.
• Allows the in-line appliance to be removed or serviced without impacting network traffic. For example, an IPS can be taken offline for upgrades, maintenance or troubleshooting
• The in-line appliance can be moved from one network segment to another without impacting network traffic.