You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/operator-nexus/concepts-nexus-npb-overview.md
+12-12Lines changed: 12 additions & 12 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,11 +11,11 @@ ms.custom: template-concept
11
11
12
12
# Network Packet Broker Overview
13
13
14
-
Network Packet Broker (NPB) allows operators to monitor service traffic flows by tapping into the network and sending copies of the network packets to special probe applications. These applications provide the operations team with network-level visibility to help with service planning and troubleshooting.
14
+
The Network Packet Broker (NPB) allows operators to monitor service traffic flows by tapping into the network and sending copies of the network packets to special probe applications. These applications provide the operations team with network-level visibility to help with service planning and troubleshooting.
15
15
16
16
NPB enables packet filtering and forwarding based on user-defined rules. NPB can perform various actions on the matched packets, such as dropping, counting, redirecting, mirroring, and logging. NPB supports both static and dynamic match conditions, which can be based on various L2/L3 parameters, such as VLAN, IP, port, protocol, or encapsulation type. NPB also supports GTPv1 encapsulation for matching packets in mobile networks.
17
17
18
-
## Key Benefits
18
+
## Key Benefits of the Network Packet Broker
19
19
20
20
-**Improved Network Visibility:** NPB provides a centralized management interface for configuring and controlling the flow of network traffic to monitoring tools (vProbes). It provides visibility into network traffic, allowing operators to monitor, analyze, troubleshoot, and identify potential security threats.
21
21
@@ -27,44 +27,44 @@ NPB enables packet filtering and forwarding based on user-defined rules. NPB can
27
27
28
28
-**Compliance and Regulatory Requirements:** NPB helps organizations meet compliance and regulatory requirements by ensuring proper monitoring of network activities and data traffic.
29
29
30
-
## Key Capabilities the Network Packet Broker
30
+
## Key Capabilities of the Network Packet Broker
31
31
32
32
-**Mirroring & Aggregation**
33
33
34
34
- Mirroring network traffic from multiple distributed applications in the Azure Operator Network (AON) instance.
35
35
36
-
- Processing the entire network traffic of AON instance.
36
+
- Processing the entire network traffic of the AON instance.
37
37
38
38
- Providing designated endpoint definitions via scalable resource models.
39
39
40
40
-**Filtering & Forwarding**
41
41
42
-
- Advanced Matching and Filtering capabilities based on L3 parameters.
42
+
- Advanced matching and filtering capabilities based on L3 parameters.
43
43
44
-
- On Demand changes to filtering and forwarding criteria.
44
+
- On demand changes to filtering and forwarding criteria.
45
45
46
-
- Secure forwarding of filtered traffic to designated external and internal networks and devices at scale.
46
+
- Secure and scalable forwarding of filtered traffic to designated external and internal networks and devices.
47
47
48
48
## Resources
49
49
50
50
To use NPB, you need to create and manage the following resources:
51
51
52
-
-**Network TAP Rule**: A set of matching configurations and actions that define the packet brokering logic. You can create a network TAP rule either inline or via a file. The inline method allows you to enter the values using AzCli, ArmClient, or Portal. The file-based method allows you to upload a file that contains the network TAP rule content from a given storage URL. The file can be updated periodically using a pull or push mechanism.
52
+
-**Network TAP Rule**: A set of matching configurations and actions that define the packet brokering logic. You can create a network TAP rule either inline or via a file. The inline method allows you to enter the values using AzCli, Resource Manager, or the portal. The file-based method allows you to upload a file that contains the network TAP rule content from a storage URL. The file can be updated periodically using a pull or push mechanism.
53
53
54
54
-**Neighbor Group**: A logical grouping of destinations where you want to send the network traffic. A neighbor group can include network interfaces, load balancers, or network virtual appliances.
55
55
56
-
-**Network TAP**: A resource that references the network TAP rule and the neighbor group that you created. A network TAP also specifies the source network interface from which the traffic is captured. You can create a network TAP using AzCli, ArmClient, or Portal. You can also enable or disable a network TAP to start or stop the packet brokering process. #
56
+
-**Network TAP**: A resource that references the network TAP rule and the neighbor group that you created. A network TAP also specifies the source network interface from which the traffic is captured. You can create a network TAP using AzCli, Resource Manager, or the portal. You can also enable or disable a network TAP to start or stop the packet brokering process.
57
57
58
58
59
59
## Using an NPB
60
60
61
61
This section describes the steps you need to follow to use an NPB.
62
62
63
-
Create the prerequisite resources:
63
+
First, create the prerequisite resources:
64
64
65
-
- A bootstrapped Network Fabric Instance
65
+
- A bootstrapped Network Fabric Instance.
66
66
67
-
- A Layer 3 isolation domain and internal network with NPB extension flag set (only required if the isolation domain is being used to reach vProbes)
67
+
- A Layer 3 isolation domain and an internal network with the NPB extension flag set (only required if the isolation domain is being used to reach vProbes).
0 commit comments