The Niagara Networks 3808E is a flagship, carrier-grade hybrid platform that combines dual-protection bypass technology with advanced packet broker capabilities to deliver one of the industry’s highest-density solutions for inline high-availability and visibility. Designed for high-performance networks, the 3808E supports up to eight network links - configurable as bypass segments or active TAPs - providing unmatched flexibility for a wide range of inline security use cases. Its powerful feature set includes sophisticated load balancing, traffic flow/packet filtering, and TAP aggregation, all integrated into a single modular solution that simplifies deployment and reduces total cost of ownership. Compared to traditional solutions, it delivers up to 400% higher bypass segment density per single RU for 40/100Gb environments, making it ideal for complex, multi-vendor security stacks. With support for all major interface speeds (1/10/25/40/100Gb), a pay-as-you-grow modular design, and API-driven automation for fail-safe scenarios, the 3808E redefines inline security with performance, scalability, and operational efficiency.

 

3808E

download-icon

The Niagara Networks 3299 is a compact, multifunctional solution that combines hybrid bypass TAP functionality with a fully featured network packet broker. It delivers 1Gb bypass and active TAP versatility, supporting a broad range of deployment scenarios, from inline security tool resilience to traffic monitoring and network visibility.

 

3299

download-icon

The Niagara Networks 3296 Bypass Switch is a multi-rate, modular passive bypass switch that supports up to 8 network links to ensure failsafe connectivity for inline security appliances. The system is designed with four modular bypass segments (up to 8 total segments) and features a customized USB Type interface for specialized management and API development purposes.Note: This model is intended for special use cases only. For more information, please contact our support team.

 

3296

download-icon

Inline Always-on Security - Uninterrupted Network Uptime

A Network Bypass Switch ensures failover or fail-safe capabilities for an inline networking device or a network security tool such as a firewall, NGFW, IDS/IPS, WAF, DDOS and many other flavours of threat detection platforms. If the network or security appliance fails or needs to be taken off-line for whatever reason, its traffic is automatically rerouted, ensuring uninterrupted traffic flow on the network.
 
What is a Network Bypass Switch?
 
Redundancy is essential and highly critical aspect for any network that needs to operate all the time. Bypass Switches sometimes also referred to as a bypass tap, the network bypass switch, is a special type of active tap. It is used to connect a network segment at a specific network access point (TAP) where there is an active, inline device (such as a security tool that is there for inspection and monitoring purposes).

Functionally, it can reroute traffic automatically by monitoring the tool’s health or can manually be made to redirect traffic (such as when disconnecting the monitoring tool for maintenance or other motives). Since the inline network devices are essential to the overall functioning of the enterprise network – any issue with them can critically effect network performance.

Each network device that is placed inline is a potential single point of failure in the computer network. If the device should experience even the shortest period of system hang-up or failure (that takes time for a reboot or any kind of troubleshooting), then traffic flow will be discontinued. Even for maintenance or replacement purposes, disconnecting the device will interrupt normal traffic flow at that point.

Any dropped data packet is a potential cause of error or inaccuracy in the processes and applications that depend on receiving those data packets. Thus, the network bypass switch – that can circumvent any and all interruptions at that critical AP or network link – is an essential element of the network infrastructure. The network bypass switch eliminates this point of failure by redirecting the network data traffic to bypass around the network device at that point, whenever that device is incapable of processing or passing the traffic.

In case the bypass switch itself is somehow compromised, it contains a relay switch that is designed to close and go to 'bypass mode' and allow the traffic to seamlessly flow through its cable to maintain an uninterrupted and open link with the rest of the network. This is especially important with regards to security devices that need to continuously defend the network against malevolent attacks and security breaches.
 
NN Bypass overview-1

Inline Bypass -  Advanced Carrier-Grade Bypass Switches

  •  Our signature Bypass offers carrier-grade double-protection bypass technology for all network speeds up to 100Gbps.
  •  Bypass is available in multiple bypass segment options, supporting a range of electrical and optical network interfaces up to 100Gb.
  •  Each Bypass segment comprises two network ports and two appliance ports.  
  •  A fail-safe / fail-open optical/copper relay on network ports, and user-configurable heartbeat-generated packets on appliance ports.
  •  TAP versatility: All Bypass-based products can be user-configured as active network TAPs, providing mirrored traffic for out-of-band monitoring and analysis.
  • Automation ready: Supports API-driven automation and management, enabling integration with orchestration platforms and programmable infrastructure.