Niagara Networks - Network Visibility
close
close-x

Site Search

    What is the difference between a SPAN port and a Network TAP?

    What is a SPAN port? 

    SPAN (Switched Port Analyzer) is a dedicated port on a switch that takes a mirrored copy of network traffic from within the switch to be sent to a destination. The destination is typically a monitoring device, or other tools used for troubleshooting or traffic analysis.

    SPAN ports present a readily available mechanism through which to access detailed packet information.

    TAP

    Limitations of a SPAN port

    A SPAN is a limited resource.  Each switch has a limited number of SPAN ports so you will need to configure it to select which traffic to see. Each SPAN session is limited in sources and destinations. If several departments need to use the SPAN port resource, this may lead to contention on who is able to configure the SPAN at any given time. This means that you cannot gain visibility of all the traffic that you need.

    An active SPAN session uses the switch’s hardware resources.  During normal function, one of the switch’s jobs is to eliminate packets that are below the minimum size and to delete corrupt packets, i.e. hardware and media errors are dropped. This means that the out-of-band monitoring devices may not receive all true traffic which will impact network forensics analysis. The switch gives high priority to network traffic while the SPAN traffic gets lower priority. So during peak times, SPAN traffic may be dropped, and the monitoring equipment will not get the complete information.

    Also, traffic on a SPAN needs to be configured as Rx (receive) and Tx (transmit) or both.  This limits your visibility.  Selecting both Tx and Rx, the port can become oversaturated and packets may be dropped.

    Limitations of a SPAN port

    A SPAN is a limited resource.  Each switch has a limited number of SPAN ports so you will need to configure it to select which traffic to see. Each SPAN session is limited in sources and destinations. If several departments need to use the SPAN port resource, this may lead to contention on who is able to configure the SPAN at any given time. This means that you cannot gain visibility of all the traffic that you need.

    A Network TAP solves all the limitations of SPAN port

    Network TAPs are purpose-built devices that see all the traffic all the time, and are not dependent on the switch’s resources and limitations. As needed, traffic can be replicated in its entirety ensuring that all tools get the same copy of the traffic and eliminating the chance of any traffic being missed. This is in contrast to a SPAN port where all your traffic may not be seen.  As an ‘unobtrusive observer’ of the traffic, the network TAP feeds a copy of the data to the attached device, often a monitoring tool or TAP monitoring device.  By utilizing one of the two types of networks TAP's, active or passive, you can gain complete visibility of your network.

    Why Niagara Network TAP?

    • Niagara solution offers comprehensive range of  passive TAPs, active TAPs and virtual TAPs
    • Our active TAP is also available as a multifunctional hybrid Packet Broker and Bypass  - this  functionality future-proofs your investment
      to design unlimited number of use cases and reduce  operational expenses  
    • Niagara solution offers network TAP functionality on all range of network speeds -  1G, 10G, 25G, 40G, and 100G
    • 100% made in USA - we design, develop and manufacture our products in Silicon Valley, USA 
    Featured Resources
    Video

    On demand WEBINAR: Exploring the Power of Managed Detection and Response with..

    On demand WEBINAR: Exploring the Power of Managed Detection and Response with MSSPs
    View
    Blog

    Active Taps for Complete Network Visibility

    Active Taps for Complete Network Visibility
    Read More
    White Paper

    SPAN Port Vs. Tap - Passively Monitor your Network

    SPAN Port Vs. Tap - Passively Monitor your Network
    View
    Data Sheet

    Niagara 3225 - Modular Passive Fiber Taps

    Niagara 3225 - Modular Passive Fiber Taps
    Download