white paper: enterprise system reference architecture for the … · 2020-03-12 · white paper...
TRANSCRIPT
© 2018 Gigamon. All rights reserved. 1
W H I T E P A P E R
Enterprise System Reference Architecture for the Visibility PlatformThe exponential growth of Big Data applications has led enterprises to re-examine the way they monitor, analyze and secure their infrastructure and the visibility strategy needed to support this effort. Application and network performance management, intrusion detection or prevention systems, VoIP monitors, data recorders and traditional network analyzers are a multitude of monitoring devices now running on our networks. Added to changing network topologies and moving parts of the stack, enterprises are finding it challenging to design a comprehensive and lasting strategy for their security, monitoring and visibility needs.
This paper covers the different ways to structure a visibility solution across network topologies, as well as address the challenges of Big Data using the Gigamon Visibility Platform. Since every IT infrastructure is different, this paper provides examples from a selection of specific sectors, delving into the role the Visibility Platform can play when addressing unique challenges of financial, oil/gas/energy and retail environments.
Visibility Platform Reference Architecture ComponentsThe Gigamon Visibility Platform sits between the IT infrastructure and the monitoring tools that need access to data. Through patented technologies and centralized management, the Gigamon GigaVUE® portfolio of high-density visibility nodes intelligently delivers the appropriate network traffic to management, analysis, compliance and security tools.
Intelligence Layer
Patented Flow Mapping®With different flavors of network traffic traversing both public and private domains, visibility of the traffic navigating the network becomes critical. Gigamon’s patented Flow Mapping technology delivers the right data to the right tools at line rate across dozens or hundreds of interfaces. Flow Mapping can replicate traffic to multiple monitoring tools and/or to distribute traffic across multiple tools using GigaStream®.
GigaSMART® TechnologyGoing beyond basic packet filtering is critical for any visibility solution. GigaSMART technology provides intelligent packet processing and modification functions, including packet masking and slicing, header stripping and tunneling. GigaSMART applications provide stateful packet-correlation capabilities that enable de-duplication, NetFlow and metadata generation, SSL decryption and Application Session Filtering.
GigaSMART enables content security by masking sensitive data or slicing packet payload so that it is not viewed or stored. Monitoring tools run more efficiently when they are not burdened with decrypting SSL traffic or removing duplicate packets or extraneous headers. Offloading these functions to GigaSMART improves tool performance and reduces cost. Optimizing monitoring and analysis tool utilization across the network and having a centralized tool rail helps keep costs in check. Tunneling with GigaSMART sends remote traffic to a centralized location, leveraging tools across locations.
ClusteringClustering improves scale and reach by interconnecting multiple GigaVUE TA Series and GigaVUE H Series visibility nodes. While clustered, the nodes are managed as a single logical node with end-to-end mapping of the traffic. GigaSMART functions can be applied to any traffic within the cluster, providing optimal flexibility and utility.
G-TAP Traffic Visibility TAPsTAPs are the foundation of any visibility solution, providing access to traffic at full line rate. TAPs provide set and forget simplicity and robustness. Unlike SPAN or mirror ports, they are unaffected by network load. TAPs are the best options for accessing live traffic because they are highly reliable, neither impact network traffic nor limit monitoring traffic, and continue to pass traffic even when other systems fail or lose power.
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 2
Gigamon offers TAPs for all standard Ethernet speeds and media up to 100Gb. TAPs are offered in both standalone configurations and as modules within the Gigamon nodes. Both passive optical TAPs and active TAPs for copper network links are available. A specialized bidirectional TAP meets the needs for 40Gb BiDi installations.
GigaVUE-HC2 and GigaVUE-HC3 Concentration LayerThe GigaVUE-HC2 and GigaVUE-HC3 are high-capacity visibility nodes that concentrate a multitude of ports and apply advanced traffic intelligence. The modular chassis allows these nodes to scale with more ports and more GigaSMART processing capability as requirements grow. Integrated TAP modules on the GigaVUE-HC2 and 10Gb breakout capabilities on the GigaVUE-HC3 provide for a compressed footprint.
Inline Bypass ProtectionThe GigaVUE HC Series can also incorporate inline security tools without endangering network performance. The health of the inline tools is monitored through the link state as well as bidirectional heartbeats that can be fine tuned to match the latency requirements of the network. Should the inline tool fail, the GigaVUE HC Series node will bypass the network traffic to maintain network continuity and maximize uptime. Physical bypass protection gives fail-to-wire protection should the GigaVUE HC Series node lose power.
GigaVUE-HB1 and GigaVUE-HC1 Edge LayerThe GigaVUE-HB1 and GigaVUE-HC1 visibility nodes are ideal for deployments at distributed processing centers, regional distributed sites for electrical power grids, oil and gas refineries, and cell sites. GigaSMART tunneling links these remote sites to the centralized tools. These visibility nodes are also suitable for situations where critical server processing is taking place in isolated wiring closets or in managed service provider deployments where Visibility as a Service is required.
GigaVUE-TA10 (front)
GigaVUE-TA40 (front)
GigaVUE-TA100 (front)
X1X2
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
X17X18
X19X20
X21X22
X23X24
X25X26
X27X28
X29X30
X31X32
X33X34
X35X36
X37X38
X39X40
X41X42
X43X44
X45X46
X47X48
1G/1
0G P
OR
TS (S
FP+)
1G/ 1
0 G P
OR
TS (S
FP+)
1G/1
0 G P
OR
TS (S
FP+)
1G/1
0 G P
OR
TS (S
FP+)
10G/40G PORTS (QSFP)
PWR1
CONSO LE
MG MT
GigaVUE-TA10X53 – X56 | Q2
X49 – X52 | Q1
X61 – X64 | Q4
X57 – X60 | Q3
PWR2 SYSTEM FAN
1G/1
0G P
OR
TS (S
FP+)
1 G/1
0G P
OR
TS (S
FP+)
PWR1
CONSOLE
MGMT
GigaVUE-TA40
PWR2 SYSTEM FAN
Q1Q2
Q3Q4
Q5Q6
Q7Q8
Q9Q10
Q11Q12
Q13Q14
Q15Q16
Q17Q18
Q19Q20
Q21Q22
Q23Q24
Q25Q26
Q27Q28
Q29Q30
Q31Q32
1G/ 1
0G P
OR
TS (S
FP+)
1G/ 1
0G P
OR
TS ( S
FP+)
PWR1
CON SOLE
MGMT
PWR2SYSTEM FAN
Q1Q2
Q3Q4
Q5Q6
Q7Q8
Q9Q10
Q11Q12
Q13Q14
Q15Q16
Q17Q18
Q19Q20
Q21Q22
Q23Q24
Q25Q26
Q27Q28
Q29Q30
Q31Q32
USB A
GigaVUE TA Series Aggregation LayerEffective network monitoring and security require a properly constructed Visibility Platform at 1Gb, 10Gb, 40Gb and/or 100Gb. Aggregation with the GigaVUE TA Series is a cost-effective means to bring together traffic from dozens of TAP and/or SPAN ports. The GigaVUE TA Series can be configured as stand-alone nodes with Flow Mapping or clustered with GigaVUE H Series nodes to provide additional scale and traffic intelligence with GigaSMART.
GigaVUE-HB1 (front)
GigaVUE-HC1 (front)
G1G2
1G/1
0G P
OR
TS (S
FP+)
G3G4
G5G6
G7G8 G9
G10G11G12
G13G14
G15G16
X1X2
X3X4
1G P
OR
TS (S
FP)
10/1
00/1
000
PORT
S
MgmtConsole
PTP-1588PPS (in)GPS Ant
GPS
PPS
PTP
M/S
Rdy
Pwr
LOCKSTATUS
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPort
Mgmt
Con-sole
GigaVUE-HC2
1
1
2
3
4
TAP
-HC
0-G
1 00C
0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
X1X2
Rdy
Pwr
SMT-HC0
-X16
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BPS-HC0
-D25A4
G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
y pas
sOn
= In
l ine
SX / SR 50 um
PR
T-H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
GigaVUE-HC2 (front)
GigaVUE-HC3 (front)
USB MGMT PTPCONRDY
PTP
PPS
FAN
PWR
M/S
STACK STACK P/S PPS(IN)
RDY
POWERH/S
SMT-HC3-C05
C5C4C3C2C1
RDY
POWERH/S
PRT-HC3-X24
X1/X2 X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 X13/X14 X15/X16 X17/X18 X19/X20 X21/X22 X23/X24
RDY
POWERH/S
PRT-HC3-X24
X1/X2 X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 X13/X14 X15/X16 X17/X18 X19/X20 X21/X22 X23/X24
RDY
C1 C2 C3 C4 C5 C6 C7 C8
POWERH/S
PRT-HC3-
C08Q08
G-TAP M Series
G-TAP ATX G-TAP BiDi
G-TAP BiDi TAP-506
Live
A
1
2
Live B
3
4
Out
A
5
6
Out B
7
8
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 3
GigaVUE-HD4/HD8 Core LayerThe high-end, high-performance GigaVUE HD Series chassis is purpose-built to handle speeds of 1Gb, 10Gb, 40Gb and 100Gb. With the ability to manage the ever-increasing volume of network traffic at the core or being tunneled in from distributed, remote or virtual environments, the GigaVUE HD Series chassis is at the heart of the monitoring infrastructure where centralized tools reside to get a big picture of the traffic traversing the network. Modular design and clustering capabilities allow the GigaVUE H Series to easily scale as network needs evolve. Blades are interchangeable across the series and cover a variety of port and intelligent processing needs.
GigaVUE-HD4 (front) GigaVUE-HD8 (front)
1 2 3 4 CC1 CC2 5 6 7 8
GigaVUE-HD8R
GigaVUE-HD8R
Gigamon
PWR
RDY
H/S
1 G/1
0G
1 G/10G
PO
RTS (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( SFP+)
OR
( 1 ) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS ( SFP+)
OR
(1) 40G P
ort ( QS
FP)
Gigamon
PWR
RDY
H/S
1 G/1
0G
1 G/10G
PO
RTS (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( SFP+)
OR
( 1 ) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS ( SFP+)
OR
(1) 40G P
ort ( QS
FP)
Gigamon
PWR
RDY
H/S
1 G/1
0G
1 G/10G
PO
RTS (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( SFP+)
OR
( 1 ) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS ( SFP+)
OR
(1) 40G P
ort ( QS
FP)
GigaSMART-HD0
PWR
RDY
H/S
Gigamon
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
GigaPORT-C02X08
PWR
RDY
Gigamon
H/S
PWR
100G P
OR
T (CFP)
C1 LINK
X1
X3
X5
X7
X2
X4
X6
X8
100G P
OR
T (CFP)
C2 LINK
GigaPORT-H12G04
Gigamon
X1
Pwr
G4
Rdy
H/S
G3
G2
G1
10/100/1000 POR
TS ( SFP)
G1
G2
G3
G4
1G/10G
POR
TS (SFP+)
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/100/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/100/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
Gig
aVU
E-HD4
ESD
CO
MM
ON
PO
INT
GR
OU
ND
Gig
aPO
RT-C
02X0
8
PWR
RD
Y Gig
amon
H/S
PWR
100G PORT (CFP)
C1
LINK
X1
X3
X5
X7
X2
X4
X6
X8
100G PORT (CFP)
C2
LINK
Gig
aSM
ART
-HD0
PWR
RD
Y
H/S
Gig
amon
LOCK
STA
TUS
Gig
aVU
E – H
CC
v2
Pri (
ON
) / S
ec (O
FF)
PTP
IEE
E 15
88)
PWR
RD
Y
H/S G
igam
on
PPS
(In)
PTP
IEEE
1588
Mgm
t
Con
sole
Stac
kM
gmt
Port
PPS
(In)PP
S (In
)
PPS
(Out
)
Gig
amon
PWR
RD
Y
H/S
1G/10G
1G/10G PORTS (SFP+)
Gig
aPO
RT-Q
02X3
2
X2 X4 X6 X8
X1 X3 X5 X7
X10
X12
X14
X16
X9 X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G PORTS (SFP+)OR (1) 40G Port (QSFP)
LINK
ENA
Q1
(4) 10G PORTS (SFP+)OR (1) 40G Port (QSFP)
Gig
aPO
RT-X
04G
44
Gig
amon
PWR
RD
Y
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47X1
X31G/10G
X2
X41G/10G
10/100/1000 PORTS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
GigaVUE-VM Virtualization LayerThe GigaVUE-VM virtual visibility node provides visibility into network traffic occurring within the virtualized infrastructure, including traffic between virtual machines (VMs) residing on the same host and even when VM migration moves VMs among hosts. Selected data streams flowing between these virtual machines can be tunneled to a GigaVUE H Series node to allow for centralized or remote monitoring.
GigaVUE-FM Management LayerGigaVUE-FM visibility manager delivers a single-pane-of-glass view of all the physical and virtual nodes across the Visibility Platform, while also providing an easy-to-use wizard-based approach for configuring patented Flow Mapping and GigaSMART traffic policies. GigaVUE-FM simplifies management, optimizes maintenance and addresses automation for the asset and configuration control across the Visibility Platform. GigaVUE-FM is available as either a virtual or physical appliance.
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 4
Types of Monitoring Reference Architectures with a Visibility Platform Solution
De-centralized or Distributed Monitoring/Centralized or De-centralized Tools/Centralized Network CoreGigamon Solution: GigaVUE-HB1, GigaVUE HC Series and GigaVUE HD SeriesData centers can also deploy de-centralized tools to complement centralized tools. Depending on traffic volume or tool cost, these specialized centralized or de-centralized tools can perform analysis at edge aggregation points. Peer-to-peer and interdepartmental traffic can be replicated and forwarded almost instantly to distributed analysis and security tools on an ad-hoc basis.
Centralized Monitoring Tools/Centralized Network CoreGigamon Solution: GigaVUE-TA10 with GigaVUE-HC2/GigaVUE-HC3Within a mid-sized data center, performance and security monitoring is centralized in a few key analytic tools. Traffic is tapped and aggregated from edge links and forwarded to a high-density chassis. Advanced filtering and traffic intelligence is applied at the core before forwarding the traffic to the tools. All the visibility nodes and traffic flows can be administered centrally and as one logical unit, making deployments scalable, extensible and manageable. This architecture not only provides the widest possible view of network activity, but also saves on tooling costs, providing immediate return on investment in many cases.
Regionalized or Distributed Network Data CentersGigamon Solution: GigaVUE-TA10 with GigaVUE-HC2/GigaVUE-HC3The visibility infrastructure of multiple regional data centers, each with their own monitoring and security tools, can be connected across a campus or WAN. Edge traffic that exceeds the capacity or capabilities of regional tools can be forwarded and analyzed by centralized tools. Regional data centers can benefit from economies of scale without sacrificing visibility.
Remote Office, Small Office or Lights-out Small Sites with Distributed Monitoring and Centralized ToolsGigamon Solution: GigaVUE-HB1, GigaVUE-HC2, GigaVUE HD SeriesIT infrastructures consisting of multiple sites across geographies require traffic visibility, but may lack the resident technical staff or budget for tools to provide on-site monitoring. Here, traffic at the remote sites is filtered and tunneled back to the main data center and its centralized tools. This provides IT staff with a broad view of the distributed system without the cost and maintenance difficulties of deploying tools at remote sites.
Private Cloud
Private Cloud
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 5
Reference Architecture DiagramThe reference architecture below shows how the Visibility Platform aggregates, replicates, filters and transforms traffic from across different network topologies to the appropriate management, monitoring and security systems. GigaVUE visibility nodes are designed to work together to create an intelligent and pervasive architecture that can easily scale and evolve as needed.
PHYSIC
AL
VIRTU
AL
REMO
TE
DM
Z
Data Centers
Data Center
GigaVUE-HC2
GigaVUE-HC3
GigaVUE-TA10
Tunneling
TunnelingTunneling
Tunneling
Tunneling
GigaVUE-VM
GigaVUE-HB1
GigaVUE-HC1
Regional DistributionCenter
GigaVUE-HC2
DecentralizedTools
APM
IDS
AA-NPM
Inline SecurityTools
IPSIPS
100Gb
Unified Visibility Platform
GigaVUE-TA40
Centralized Tools
Analyzer AA-NPM IDS Sni�erAPM
GigaVUE-TA40
GigaVUE-TA100
GigaVUE-FM
FlowVUE™
De-duplication GTP Correlation
GigaVUE-HD8
Flow Mapping
NetFlow andMetadata Generation
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPor t
Mgmt
Con-sole
GigaVUE-HC2
1
1
2
3
4TA
P-H
C0-
G10
0C0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
X1X2
Rdy
PwrSM
T-HC0
-X16
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BPS-HC0
-D25A4
G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
ypas
sOn
= In
line
SX / SR 50 um
PR
T-H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPor t
Mgmt
Con-sole
GigaVUE-HC2
1
1
2
3
4
TAP
-HC
0-G
100C
0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
X1X2
Rdy
Pwr
SMT-HC0
-X16
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BPS-HC0
-D25A4
G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
ypas
sOn
= In
line
SX / SR 50 um
PR
T-H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
G1G2
1G/1
0G P
OR
TS (S
FP+)
G3G4
G5G6
G7G8 G9
G10G11G12
G13G14
G15G16
X1X2
X3X4
1G P
OR
TS (S
FP)
10/1
00/1
000
PORT
S
MgmtConsole
PTP-1588PPS (in)GPS Ant
GPS
PPS
PTP
M/S
Rdy
Pwr
LOCKSTATUS
X1X2
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
X17X18
X19X20
X21X22
X23X24
X25X26
X27X28
X29X30
X31X32
X33X34
X35X36
X37X38
X39X40
X41X42
X43X44
X45X46
X47X48
1G/1
0G P
OR
TS (S
FP+)
1G/1
0G P
OR
T S (S
FP+)
1G/1
0G P
OR
TS (S
FP+)
1G/1
0 G P
OR
TS (S
FP+)
10G/40G PORTS (QSFP)
PWR1
CONSO LE
MG MT
GigaVUE-TA10X53 – X56 | Q2
X49 – X52 | Q1
X61 – X64 | Q4
X57 – X60 | Q3
PWR2 SYSTEM FAN
1G/1
0G P
OR
TS (S
FP+)
1G/1
0G P
OR
TS (S
FP+)
PWR1
CONSOLE
MGMT
GigaVUE-TA40
PWR2 SYSTEM FAN
Q1Q2
Q3Q4
Q5Q6
Q7Q8
Q9Q10
Q11Q12
Q13Q14
Q15Q16
Q17Q18
Q19Q20
Q21Q22
Q23Q24
Q25Q26
Q27Q28
Q29Q30
Q31Q32
1G/1
0G P
OR
TS (S
FP+)
1G/1
0G P
OR
TS (S
FP+)
PWR1
CONSOLE
MGMT
GigaVUE-TA40
PWR2 SYSTEM FAN
Q1Q2
Q3Q4
Q5Q6
Q7Q8
Q9Q10
Q11Q12
Q13Q14
Q15Q16
Q17Q18
Q19Q20
Q21Q22
Q23Q24
Q25Q26
Q27Q28
Q29Q30
Q31Q32
1G/1
0G P
OR
TS (S
FP+)
1 G/ 1
0G P
OR
TS (
SFP
+)
PWR1
CON SOLE
MGMT
PWR2SYSTEM FAN
Q1Q2
Q3Q4
Q5Q6
Q7Q8
Q9Q10
Q11Q12
Q13Q14
Q15Q16
Q17Q18
Q19Q20
Q21Q22
Q23Q24
Q25Q26
Q27Q28
Q29Q30
Q31Q32
USB A
1 2 3 4 CC1 CC2 5 6 7 8
GigaVUE-HD8R
GigaVUE-HD8R
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RT S (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( SF P+)
OR
( 1 ) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
T S ( SF P+)
OR
(1) 40G P
ort ( QS
FP)
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RTS (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS (S FP+ )
OR
(1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS (S FP+)
OR
(1) 40G P
or t ( QS
FP)
Gigamon
PWR
RDY
H/S
1 G/1
0G
1 G/10G
PO
RT S (SF P
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( S FP+)
OR
( 1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS ( S FP+)
OR
(1 ) 40G P
ort ( QS
FP)
GigaSMART-HD0
PWR
RDY
H/S
Gigamon
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
GigaPORT-C02X08
PWR
RDY
Gigamon
H/S
PWR
100G P
OR
T (CFP)
C1 LINK
X1
X3
X5
X7
X2
X4
X6
X8
100G P
OR
T (CFP)
C2 LINK
GigaPORT-H12G04
Gigamon
X1
Pwr
G4
Rdy
H/S
G3
G2
G1
10/100 /1000 POR
TS (SFP)
G1
G2
G3
G4
1G/10G
POR
TS (SFP
+)
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/10 0/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/100/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
POWERED BY
GigaSMART®
X1/X2
RDY PWR FAN PTP PPS M/S
Stack/PTPMgnt / Con G1 / G2 G3 / G4
USB
X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 TAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFFTAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFF
USB MGMT PTPCONRDY
PTP
PPS
FAN
PWR
M/S
STACK STACK P/S PPS(IN)
RDY
POWERH/S
SMT-HC3-C05
C5C4C3C2C1
RDY
POWERH/S
PRT-HC3-X24
X1/X2 X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 X13/X14 X15/X16 X17/X18 X19/X20 X21/X22 X23/X24
RDY
POWERH/S
PRT-HC3-X24
X1/X2 X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 X13/X14 X15/X16 X17/X18 X19/X20 X21/X22 X23/X24
RDY
C1 C2 C3 C4 C5 C6 C7 C8
POWERH/S
PRT-HC3-
C08Q08
Public Virtual Remote Public
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 6
Security Delivery PlatformAlthough billions of dollars are spent annually to secure and protect network infrastructures, security breaches continue to be reported by the media on a daily basis. For every reported incident, there are many more that don’t make the press or, worse yet, go completely undetected. Simple antivirus software alone is no longer sufficient because advanced threat signatures morph and change. As threats become more sophisticated, a variety of security tools are required. Best practices suggest that multi-tiered security solutions should be implemented and tying these together with a Security Delivery Platform creates an efficient and effective security posture.
Deploying multiple security solutions presents a number of challenges. First, multiple tools may require access to the same packets. In some cases, this requires a combination of both inline and out-of-band tools (inline could be a firewall or IPS stopping packets at the door, while out-of-band tools such as an IDS or malware detection if/when/where a breach occurred). This can prove difficult if the tools are connected directly to a single TAP or SPAN port. Thus, replication is required. Second, sophisticated tools are expensive and tend to be processor-bound. Such bandwidth limitations can lead to processing bottlenecks and throughput degradation. Distributing traffic across multiple inline tools, not only scales performance to meet network load, but also provides redundancy and tool failover.
A Security Delivery Platform is the only viable answer to mitigate these issues. This applies to secure deployments across all verticals. Not only can it seamlessly replicate and filter traffic to enhance tool performance, but it also protects the network with fail-to-wire bypass functionality.
GigaSMART provides vital traffic intelligence to the Security Delivery Platform. SSL decryption enables security tools to detect malware that leverages encrypted communication channels, while at the same time helping to ensure that sensitive information is not compromised. Providing flow and session intelligence in the form of unsampled NetFlow as well as metadata in the form of IPFIX extensions leads to more accurate forensics and analytics.
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPor t
Mgmt
Con-sole
GigaVUE-HC2 2
3
4
TAP
-HC
0-G
100C
0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
PR
T -H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
1
X1X2
Rdy
Pwr
SM
T-H
C0 -
X1
6
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BP
S-H
C0-
D2
5A4G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
ypas
sOn
= In
line
SX / SR 50 um
IntrusionDetection
System
NetFlowCollectorInternet
Edge Routers
Core Switches
GigaStream™
IntrusionPrevention
Systems
EmailInspection
Data LossPrevention
Out-of-BandMalware
NetFlow andMetadata
Generation
SSLDecryption
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 7
Reference Architectures by VerticalSince every infrastructure has its own unique IT challenges, architectures may vary from one location to another. As such, specific examples are depicted below and on the pages that follow for various IT market sectors. Although they vary in complexity and size, the basic concepts are the same. Critical data is directed into the Visibility Platform from a variety of sources scattered across the network, and then directed to a combination of local and centralized tools. The bottom line is that the right information needs to be directed to the right tools at the right time.
Financial ServicesNetwork infrastructure for Financial Services is about lightning-fast transaction processing and the ability to maintain performance during unpredictable globally-based traffic spikes. Increases in network demands, like application availability, integrated market feeds, virtualization, Payment Card Industry (PCI) compliance and high-volume transactions, challenge traditional approaches to the network and to the tools infrastructure. Newer financial regulation requirements add further complexity to these high-speed network architectures.
PRIMARY DATA CENTER SECONDARY DATA CENTER
REMOTE LOCATION 2
Tunneling
Trading Servers
GigaVUE-HB1
De-duplication Masking TAPs
ProbeHQ
Trading Servers
REMOTE LOCATION 3
Tunneling
Trading Servers
GigaVUE-HB1
De-duplication Masking TAPs
ProbeHQ
Trading Servers
REMOTE LOCATION 1
Tunneling
Trading Servers
GigaVUE-HC1
De-duplication Masking TAPs
ProbeHQ
Trading Servers
GigaVUE-HD8 GigaVUE-HD8
Database Monitor
Forensic Recorder
Web, Email and VPN Server
Database Monitor
Forensic Recorder
Web, Email and VPN Server
G1G2
1G/1
0G P
OR
TS (S
FP+)
G3G4
G5G6
G7G8 G9
G10G11G12
G13G14
G15G16
X1X2
X3X4
1G P
OR
TS (S
FP)
10/1
00/1
000
PORT
S
MgmtConsole
PTP-1588PPS (in)GPS Ant
GPS
PPS
PTP
M/S
Rdy
Pwr
LOCKSTATUS
G1G2
1G/1
0G P
OR
TS (S
FP+)
G3G4
G5G6
G7G8 G9
G10G11G12
G13G14
G15G16
X1X2
X3X4
1G P
OR
TS (S
FP)
10/1
00/1
000
PORT
S
MgmtConsole
PTP-1588PPS (in)GPS Ant
GPS
PPS
PTP
M/S
Rdy
Pwr
LOCKSTATUS
1 2 3 4 CC1 CC2 5 6 7 8
GigaVUE-HD8R
GigaVUE-HD8R
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RT S (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( SF P+)
OR
( 1 ) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
T S ( SF P+)
OR
(1) 40G P
ort ( QS
FP)
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RTS (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS (S FP+ )
OR
(1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS (S FP+)
OR
(1) 40G P
or t ( QS
FP)
Gigamon
PWR
RDY
H/S
1 G/1
0G
1 G/10G
PO
RT S (SF P
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( S FP+)
OR
( 1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS ( S FP+)
OR
(1 ) 40G P
ort ( QS
FP)
GigaSMART-HD0
PWR
RDY
H/S
Gigamon
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
GigaPORT-C02X08
PWR
RDY
Gigamon
H/S
PWR
100G P
OR
T (CFP)
C1 LINK
X1
X3
X5
X7
X2
X4
X6
X8
100G P
OR
T (CFP)
C2 LINK
GigaPORT-H12G04
Gigamon
X1
Pwr
G4
Rdy
H/S
G3
G2
G1
10/100 /1000 POR
TS (SFP)
G1
G2
G3
G4
1G/10G
POR
TS (SFP
+)
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/10 0/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/100/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
1 2 3 4 CC1 CC2 5 6 7 8
GigaVUE-HD8R
GigaVUE-HD8R
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RT S (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( SF P+)
OR
( 1 ) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
T S ( SF P+)
OR
(1) 40G P
ort ( QS
FP)
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RTS (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS (S FP+ )
OR
(1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS (S FP+)
OR
(1) 40G P
or t ( QS
FP)
Gigamon
PWR
RDY
H/S
1 G/1
0G
1 G/10G
PO
RT S (SF P
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( S FP+)
OR
( 1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS ( S FP+)
OR
(1 ) 40G P
ort ( QS
FP)
GigaSMART-HD0
PWR
RDY
H/S
Gigamon
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
GigaPORT-C02X08
PWR
RDY
Gigamon
H/S
PWR
100G P
OR
T (CFP)
C1 LINK
X1
X3
X5
X7
X2
X4
X6
X8
100G P
OR
T (CFP)
C2 LINK
GigaPORT-H12G04
Gigamon
X1
Pwr
G4
Rdy
H/S
G3
G2
G1
10/100 /1000 POR
TS (SFP)
G1
G2
G3
G4
1G/10G
POR
TS (SFP
+)
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/10 0/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/100/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
PBX Gateway
X1/X2
RDY PWR FAN PTP PPS M/S
Stack/PTPMgnt / Con G1 / G2 G3 / G4
USB
X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 TAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFFTAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFF
Private
Internet Internet Internet
Public
Private Private
PBX Gateway
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 8
As larger data centers expand, there is often a migration to high-speed links such as 40Gb or 100Gb. The Visibility Platform is especially critical for high-speed links because monitoring tools are processor-bound and cannot run at those speeds. Flown Mapping technology is required to 1) convert to the speed of the tools in use and 2) to filter traffic so only the required data is forwarded. This makes the tools more efficient. Bidirectional 40Gb optics are often used to reduce the overall cost of migrating to higher-speed links. Gigamon offers a specialized 40Gb BiDi TAP and optics for monitoring these installations.
Information can be routed to centralized monitoring where processing can be made more efficient with the Visibility Platform functions found in GigaSMART technology. These GigaSMART functions include:
De-duplication lets the user remove duplicate IPv4 packets before they are unnecessarily processed or stored by tools. Duplicate packets can occur when both the ingress and egress data paths are sent to a single output. They can also appear when packets are gathered from multiple collection points along a path. A GigaSMART operation removes packets that are identical from the network layer (Layer 3) up, reducing overhead on any tools required to process the packets.
Masking lets the user overwrite specific packet fields with a specified pattern so that sensitive information is protected during network analysis. Privacy compliance is crucial for financial, insurance and healthcare enterprises. GigaSMART masking gives network engineers the data they need while still keeping private data private. GigaSMART masking in conjunction with the regular expression engine of Adaptive Packet Filtering can automatically locate and mask target data anywhere in the packet.
IP tunneling enables encapsulation of IP packets received at one GigaSMART-enabled node and subsequent routing over the internet to a second GigaSMART-enabled node where they are decapsulated using an IP decapsulation operation and made available to tools.
Source Port Labeling
PRIMARY DATA CENTER
GigaVUE-HC3
De-duplication
L7 Load Balancing
Masking
Header Stripping
USB MGMT PTPCONRDY
PTP
PPS
FAN
PWR
M/S
STACK STACK P/S PPS(IN)
RDY
POWERH/S
SMT-HC3-C05
C5C4C3C2C1
RDY
POWERH/S
PRT-HC3-X24
X1/X2 X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 X13/X14 X15/X16 X17/X18 X19/X20 X21/X22 X23/X24
RDY
POWERH/S
PRT-HC3-X24
X1/X2 X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 X13/X14 X15/X16 X17/X18 X19/X20 X21/X22 X23/X24
RDY
C1 C2 C3 C4 C5 C6 C7 C8
POWERH/S
PRT-HC3-
C08Q08
Database Monitor
Forensic Recorder
Web, Email and VPN Server
PBX Gateway
REMOTE LOCATION 1
GigaVUE-HC1
ProbeHQ
Trading Servers
X1/X2
RDY PWR FAN PTP PPS M/S
Stack/PTPMgnt / Con G1 / G2 G3 / G4
USB
X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 TAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFFTAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFF
Internet
ATM
ATM
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
© 2018 Gigamon. All rights reserved. 9
Oil, Gas and EnergyEthernet is now used as the communication backbone for monitoring systems used in oil and gas exploration. Digital video surveillance and remote I/O are considered vital for monitoring of pipeline pressure and flow conditions, and this data needs to be effectively communicated to a central supervisory control and data acquisition (SCADA) system. The station data is routed from individual pump rooms either through the fiber Ethernet ring backbone or through an industrial wireless access point/router to a central station. Similar data flows are found in both electric and hydro power generation facilities.
The GigaVUE-HB1 and GigaVUE-HC2 nodes are self-contained units capable of connecting all manner of infrastructure with a variety of network analysis, monitoring and instrumentation tools. The small-footprint 1RU node is well suited for tight locations such
as individual pump rooms where critical visibility is required but rack space is limited. Both visibility nodes leverage patented Flow Mapping technology for broad aggregation, replication and filtering capabilities. Optional GigaSMART functionality is built into the product for intelligent slicing, masking, de-duplication and other processing-intense applications onsite prior to efficiently tunneling data back to a centralized analysis center when that is preferred.
In this case the pipeline pressures and flow conditions from individual pump rooms can be encapsulated and tunneled to a central SCADA system.
EnvironmentalMonitoring
ProcessManagement
InfrastructureSupervision
SCADA
Unified Visibility Platform
GigaVUE-HD8
Oil Refineries
GigaVUE-HB1
Regional Distribution Center
Headquarters
FlowSensor
GigaVUE-HC1
EnvironmentalMonitoring
ProcessManagement
Gas Detector
GigaVUE-HC2 GigaVUE-HC2
GigaVUE-HC2 GigaVUE-HC2
Pressure Detector
PressureDetector
LeakageDetector
GasDetector
Pipeline
GigaVUE-HB1
O�shore Oil Rig
GigaVUE-HB1
G1G2
1G/1
0G P
OR
TS (S
FP+)
G3G4
G5G6
G7G8 G9
G10G11G12
G13G14
G15G16
X1X2
X3X4
1G P
OR
TS (S
FP)
10/1
00/1
000
PORT
S
MgmtConsole
PTP-1588PPS (in)GPS Ant
GPS
PPS
PTP
M/S
Rdy
Pwr
LOCKSTATUS
G1G2
1G/1
0G P
OR
TS (S
FP+)
G3G4
G5G6
G7G8 G9
G10G11G12
G13G14
G15G16
X1X2
X3X4
1G P
OR
TS (S
FP)
10/1
00/1
000
PORT
S
MgmtConsole
PTP-1588PPS (in)GPS Ant
GPS
PPS
PTP
M/S
Rdy
Pwr
LOCKSTATUS
G1G2
1G/1
0G P
OR
TS (S
FP+)
G3G4
G5G6
G7G8 G9
G10G11G12
G13G14
G15G16
X1X2
X3X4
1G P
OR
TS (S
FP)
10/1
00/1
000
PORT
S
MgmtConsole
PTP-1588PPS (in)GPS Ant
GPS
PPS
PTP
M/S
Rdy
Pwr
LOCKSTATUS
1 2 3 4 CC1 CC2 5 6 7 8
GigaVUE-HD8R
GigaVUE-HD8R
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RT S (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( SF P+)
OR
( 1 ) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
T S ( SF P+)
OR
(1) 40G P
ort ( QS
FP)
Gigamon
PWR
RDY
H/S
1G/1
0G
1 G/10G
PO
RTS (SFP
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS (S FP+ )
OR
(1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS (S FP+)
OR
(1) 40G P
or t ( QS
FP)
Gigamon
PWR
RDY
H/S
1 G/1
0G
1 G/10G
PO
RT S (SF P
+)
GigaPORT-Q02X32
X2
X4
X6
X8
X1
X3
X5
X7
X10
X12
X14
X16
X9
X11
X13
X15
X18
X20
X22
X24
X17
X19
X21
X23
X26
X28
X30
X32
X25
X27
X29
X31
LINK
ENA
Q1
(4) 10G P
OR
TS ( S FP+)
OR
( 1) 40G P
ort (QS
FP)
LINK
ENA
Q1
(4) 10 G P
OR
TS ( S FP+)
OR
(1 ) 40G P
ort ( QS
FP)
GigaSMART-HD0
PWR
RDY
H/S
Gigamon
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
LOCK STATUS
GigaVUE – HCCv2
Pri (ON) / Sec (OFF)
PTP IEEE 1588)
PWR
RDY
H/S
Gigamon
PPS (In)
PTPIEEE1588
Mgmt
Console
StackMgmtPort
PPS (In)
PPS (In)
PPS (Out)
GigaPORT-C02X08
PWR
RDY
Gigamon
H/S
PWR
100G P
OR
T (CFP)
C1 LINK
X1
X3
X5
X7
X2
X4
X6
X8
100G P
OR
T (CFP)
C2 LINK
GigaPORT-H12G04
Gigamon
X1
Pwr
G4
Rdy
H/S
G3
G2
G1
10/100 /1000 POR
TS (SFP)
G1
G2
G3
G4
1G/10G
POR
TS (SFP
+)
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
X1
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G
10/10 0/1000 POR
TS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
GigaPORT-X04G44
Gigamon
PWR
RDY
H/S
G1
G3
G5
G7
G9
G11
G2
G4
G6
G8
G10
G12
G13
G15
G17
G19
G21
G23
G14
G16
G18
G20
G22
G24
G25
G27
G29
G31
G33
G35
G37
G39
G41
G43
G45
G47
X1
X3
1G/10G
X2
X4
1G/1
0G10/100/1000 PO
RTS (SFP)
G38
G40
G42
G44
G30
G32
G34
G36
G28
G26
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPor t
Mgmt
Con-sole
GigaVUE-HC2
1
1
2
3
4
TAP
-HC
0-G
100C
0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
X1X2
Rdy
Pwr
SMT-HC0
-X16
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BPS-HC0
-D25A4
G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
ypas
sOn
= In
line
SX / SR 50 um
PR
T-H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPor t
Mgmt
Con-sole
GigaVUE-HC2
1
1
2
3
4
TAP
-HC
0-G
100C
0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
X1X2
Rdy
Pwr
SMT-HC0
-X16
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BPS-HC0
-D25A4
G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
ypas
sOn
= In
line
SX / SR 50 um
PR
T-H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPor t
Mgmt
Con-sole
GigaVUE-HC2
1
1
2
3
4
TAP
-HC
0-G
100C
0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
X1X2
Rdy
Pwr
SMT-HC0
-X16
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BPS-HC0
-D25A4
G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
ypas
sOn
= In
line
SX / SR 50 um
PR
T-H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
FanPPS Rear
RdyPwr
M/S
Lock
PTPIEEE1588
StackMgmtPor t
Mgmt
Con-sole
GigaVUE-HC2
1
1
2
3
4
TAP
-HC
0-G
100C
0
Rdy
PwrTAP 1 TAP 2 TAP 3 TAP 4 TAP 5 TAP 6 TAP 7 TAP 8 TAP 9 TAP 10 TAP 11 TAP 12
X1X2
Rdy
Pwr
SMT-HC0
-X16
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
H/S
X1X2
Rdy
Pwr BPS-HC0
-D25A4
G
X3X4
X5X6
X7X8
X9X10
X11X12
X13X14
X15X16
B MANET WORK 1
B MANET WORK 2
B MANET WORK 3
B MANET WORK 4
MOD
E (M
)Off
= B
ypas
sOn
= In
line
SX / SR 50 um
PR
T-H
C0-
Q06
Rdy
Pwr
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
Q1 LNK
ENA
X1/X2
RDY PWR FAN PTP PPS M/S
Stack/PTPMgnt / Con G1 / G2 G3 / G4
USB
X3/X4 X5/X6 X7/X8 X9/X10 X11/X12 TAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFFTAP1 TAP2 TAP3 TAP4
RDY
POWER ON/OFF
Cloud
WHITE PAPER | ENTERPRISE SYSTEM REFERENCE ARCHITECTURE FOR THE VISIBILITY PLATFORM
Worldwide Headquarters 3300 Olcott Street, Santa Clara, CA 95054 USA+1 (408) 831-4000 | www.gigamon.com
© 2018 Gigamon. All rights reserved. Gigamon and the Gigamon logo are trademarks of Gigamon in the United States and/or other countries. Gigamon trademarks can be found at www.gigamon.com/legal-trademarks. All other trademarks are the trademarks of their respective owners. Gigamon reserves the right to change, modify, transfer, or otherwise revise this publication without notice.
12/18
Retail CenterIn order to enable mission-critical applications to consistently run smoothly, end-to-end traffic visibility of all applications across the corporate local network, Wide Area Network (WAN) and the data center is required. The Visibility Platform enables a clear and precise depiction of the production traffic in enterprise networks and optimizes tool performance by delivering only critical and relevant application traffic. Where the limited bandwidth of high-cost WAN links is an issue, the platform is also able to reduce the amount of monitored traffic by filtering only on critical applications and removing non-business application traffic completely, if required.
The comprehensive functionality of the GigaVUE H Series visibility nodes, including Flow Mapping and optional GigaSMART, enables traffic visibility at remote distribution sites to granularly filter, identify the application, and deliver the right data to the right tools by tunneling the monitored traffic to centralized corporate tools infrastructure. Flow Mapping and optional GigaSMART technology deliver application awareness and intelligent traffic classification. Optional functionalities include de-duplication, packet slicing, header addition, trailer addition, header stripping, IP encapsulation and IP decapsulation as per the requirement of the tools. The Visibility Platform system architecture enables the customer to set up an entire ecosystem all the way from the edge, through the concentration point, to the core, providing visibility into the entire network.
SummaryEnterprises continue to incur significant capital and operational expenses to acquire and maintain tools that monitor, analyze and secure their networks. In addition, driving forces of virtualization and cloud computing, mobility, Big Data and SDN are causing network operators to re-evaluate their monitoring infrastructure and the visibility strategy needed to support it.
Gigamon’s Visibility Platform provides the right port density, scale and volume for different network infrastructure. Tunneling from virtual or distributed sites and clustering capabilities enable seamless integration with other GigaVUE H Series nodes to further expand and extend the reach of the Visibility Platform. For organizations looking at cloud, mobility and Big Data as opportunities to accelerate their business, the Visibility Platform can be critical to achieve faster time to value and a higher value over time.
About GigamonGigamon (NYSE: GIMO) provides active visibility into data-in-motion network traffic, enabling organizations to see more and secure more with stronger security and superior performance. Gigamon Visibility Platform and GigaSECURE®, the industry’s first Security Delivery Platform, deliver advanced intelligence so that security, network, and application performance management solutions in enterprise, government, and service provider networks operate more efficiently and effectively. See more at www.gigamon.com, the Gigamon Blog, or follow Gigamon on Twitter, LinkedIn or Facebook.