Net Optics iBypass HD User Manual
User Guide
iBypass HD
Eight segment bypass switch
Doc. 800-0126-001 Rev 5 PUBIBP8000U 4/10
PLEASE READ THESE LEGAL NOTICES CAREFULLY.
By using a Net Optics iBypass HD device you agree to the terms and conditions of usage set forth by Net Optics, Inc.
No licenses, express or implied, are granted with respect to any of the technology described in this manual. Net Optics retains all intellectual
property rights associated with the technology described in this manual. This manual is intended to assist with installing Net Optics products into
your network.
Trademarks and Copyrights
© 2008-2010 by Net Optics, Inc. Net Optics is a registered trademark of Net Optics, Inc. iBypass HD is a trademark of Net Optics, Inc. Additional
company and product names may be trademarks or registered trademarks of the individual companies and are respectfully acknowledged.
Additional Information
Net Optics, Inc. reserves the right to make changes in specications and other information contained in this document without prior notice. Every
effort has been made to ensure that the information in this document is accurate.
iBypass HD
Contents
Chapter 1
Introduction .............................................................................................. 1
Key Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2
About this Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Bypass Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Power Loss Bypass . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4
Heartbeat Bypass . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Forced Bypass On . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Tap Mode During Bypass . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Trafc Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
CRC Forwarding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Jumbo Packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Link Fault Detect . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Bypass Detect . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
iBypass HD Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
The iBypass HD Front Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
The iBypass HD Rear Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8
Chapter 2
Installing the iBypass HD ......................................................................... 9
Plan the Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Unpack and Inspect the iBypass HD device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Install DBMs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Install SFP Modules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Rack Mount the iBypass HD device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
Connect Power to the iBypass HD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
Installation in a Restricted Access Location in Finland and Norway . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14
Warnings and Symbols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Connect the Local CLI Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Connect the Remote CLI Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Log into the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Use the CLI Help Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Congure the iBypass HD Using the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Change the iBypass HD Login Password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
Assign a New iBypass HD IP Address, Netmask, and Gateway IP Address . . . . . . . . . . . . . . . . . . . . . . 21
Change the SSH Password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
Change Port Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Set the Current Date and Time . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
iBypass HD
Save and Load the iBypass HD Congurations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Manage the Security Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Use the CLI Command History Buffer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Undertand the Commit Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Connect the iBypass HD to the Network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
Connect IPSs to the iBypass HD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Conguring the Bypass Switches . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Check the Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Chapter 3
Conguring Bypass Switches Using the CLI .......................................... 27
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Restart the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Congure Bypass Switch and DBM Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
Customize Heartbeat Packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
Use Bypass Switch Pairs in High Availability (HA) Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
Chapter 5
Conguring AAA Servers ........................................................................ 33
Congure RADIUS and TACACS+ Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Appendix A
iBypass HD Specications ...................................................................... 37
Appendix B
Command Line Interface ........................................................................ 39
iBypass HD CLI Quick Reference ........................................................... 40
iBypass HD
Chapter 1
Introduction
Net Optics iBypass HD is a high density solution for fail-safe attachment of in-line devices such as intrusion
preventions systems (IPSs), rewalls, and data loss prevention (DLP) appliances. (For simplicity, the acronym IPS
will be used for all such in-line devices in this manual.) The iBypass HD provides eight independent intelligent bypass
switches in a 1U form-factor, the highest bypass switch density in the industry.
A modular design enables you to congure the iBypass HD to t your environment. Dual Bypass Modules (DBMs)
enable the iBypass HD to be populated with 2, 4, or 8 bypass switches. DBMs are available with copper, singlemode
ber, and multimode ber interfaces, and they can be mixed in any combination in the iBypass HD chassis.
Besides functioning as independent bypass switches, the pair of bypass switches in each DBM can be coupled
together in a high availablity conguration, supporting failover to a backup link or to a backup IPS. The device is
enterprise-ready with a full-function management interface, making the iBypass HD is a key component for building a
comprehensive, consolidated monitoring infrastructure for both network performance management and security.
IPS
DLP
Compliance
Internet
IPS
Figure 1: A comprehensive, consolidated network monitoring infrastructure using iBypass HD
Fail-safe In-line Access
The iBypass HD provides fail-safe in-line access ports for up to eight IPSs. Each bypass switch routes data through the
IPS as if it were in-line, completely transparently. If the IPS loses power or is otherwise unable to proces the trafc in a
timely manner, the bypass switch changes to Bypass On mode, taking the IPS ofine and routing trafc directly through
the network link. When the IPS is able to process trafc again, the bypass switch automatically switches to Bypass Off
mode and routes the trafc through the IPS once again.
No Trafc Interference
The network connections in the iBypass HD are fully passive. They never affect the network trafc owing through
them—not even if the unit loses power. If the iBypass HD loses power from both of its redundant power sources, it
automatically enters Bypass On mode to keep the network trafc owing (but bypassing the IPS).
DLP
Compliance
1
iBypass HD
Bi-Directional Heartbeat
The iBypass HD periodically sends small Heartbeat packets through attached IPSs to verify their ability to process
trafc. If a Heartbeat packet is not returned within a congurable timeout and number of retires, the IPS is assumed
to be down and Bypass On mode is entered, taking the IPS ofine. Hearbeat packets continue to be sent to the
down IPS; when they start being returned, the IPS is known to be healthy so Bypass Off mode is resumed, with
trafc going through the IPS once again. Heartbeat packets can be sent in one direction, transmitted on Port 1 and
received on Port 2, or both directions, also transmitted on Port 2 and received on Port 1. The Heartbeat packet can be
customized independently for each bypass switch, setting the packet contents, timeout, and number of retries.
High Availability Mode
The two bypasses switches in a DBM can be coupled together in a high availability (HA) mode that supports both
link redundancy and tool redundancy. If the primary link fails, the bypass switch reroutes to the secondary link. If
the primary tool fails, the trafc is routed to the secondary tool. When the primary link or tool comes back online,
they are automatically switched back into the conguration.
SFP Flexibility
DBMs for tapping ber network links have SFP transciever modules on the monitor ports, so IPSs with any media
type can be attached. Single-mode and multi-mode Gigabit ber, Gigabit copper, and 10/100/1000 copper interface
SFP modules are supported.
Enterprise-Ready Management
Enterprise networks can easily integrae the iBypass HD into the infrastructure because the device supports SSH secure
remote management, role-based access privileges, and RADIUS and TACACS+ authentication and authorization.
Key Features
Ease of Use
• 19-inch rack frame, 1U high
• Front-mounted connectors for quick and easy installation
• LED indicators show Power, Link, and Activity status
• Modular design for conguration exibility
• RMON statistics, including network utilization, packet count, and CRC errors
• Text-based command-line interface (CLI) available through RS232 serial port and remotely over secure SSH
connections
• Field-upgradeable software
• Compatible with all major manufacturers’ monitoring devices including IPSs, rewalls, protocol analyzers, probes,
and intrusion detection systems
Passive, Secure Technology
• Passive access at up to 1 Gbps
• In-line links do not interfere with the data stream or introduce a point of failure
• Optimized and tested for 10, 100, and 1000 Mbps copper and 1 Gpbs ber networks
• Universal AC or -48VDC hot-swappable, redundant power supplies to maximize uptime
• In-line links default to open under a complete power-fail condition, ensuring network availability
• FCC, CE, VCCI, C-Tick, and WEEE certied
• Fully RoHS compliant
2
Unsurpassed Support
• Net Optics offers technical support throughout the lifetime of your purchase. Our technical support team is
available from 8:00 to 17:00 Pacic Time, Monday through Friday at +1 (408) 737-7777 and via e-mail at
ts-support@netoptics.com. Information is also available on the Net Optics Web site at www.netoptics.com.
About this Guide
Please read this entire guide before installing the iBypass HD. This guide applies to the following part numbers:
Part Number Description
IBP-8000 iBypass HD Main Chassis, 4 DBM Bays
IBP-8000-DC iBypass HD Main Chassis, 4 DBM Bays, -48V
DBM-100 DBM, iBypass HD, 10/100/1000, RJ45
DBM-200 DBM, iBypass HD, Gig, MM, 62.5μm, SFP Monitor Ports
DBM-250 DBM, iBypass HD, Gig, MM, 50μm, SFP Monitor Ports
DBM-300 DBM, iBypass HD, Gig, SM, 8.5μm, SFP Monitor Ports
Bypass Modes
A bypass switch is in Bypass Off mode during normal system operation. Trafc is routed through the attached IPS just
as if the IPS were in-line itself. The following gure shows a bypass switch in normal operation (Bypass Off mode).
iBypass HD
Bypass O
Traffic is routed through the IPS
IPS
Figure 2: Bypass Off mode – the IPS is in-line
A bypass switch is in Bypass On mode when a problem occurs. Trafc is routed directly though the network link,
bypassing the attached IPS. The following gure shows a bypass switch when a problem occurs (Bypass On mode).
3
iBypass HD
IPS
Bypass On
Traffic bypasses the IPS
Figure 3: Bypass On mode – the IPS is off-line
Note: _________________________________________________________________________________________________
If fail_state is set to no_trafc rather than fail-to-wire, then network trafc is blocked in Bypass On mode.
_______________________________________________________________________________________________________
A bypass switch enters Bypass On mode when one of four events occurs:
• Power loss to the iBypass HD
• Link failure
• IPS application failure (can be caused by loss of power to the IPS)
• Bypass On mode forced by CLI command
Link failure and application failure are detected by the Heartbeat packet not being received when expected.
A bypass switch returns to Bypass Off mode when four conditions are met:
• The iBypass HD has power
• The network link is up
• The IPS application is running (passing Heartbeat packets)
• Bypass On mode is not forced by CLI command
These conditions are discussed in further detail in the following sections.
Power Loss Bypass
The bypass switch protects link integrity when the attached IPS or the bypass switch itself loses power. To install the
bypass switch for this type of protection, the switch should share the same power source as the monitoring appliance.
If you are using redundant power supplies for the IPS, connect the same power source to the iBypass HD device's
redundant power inputs.
4
Heartbeat Bypass
IPS
Bypass On
Traffic bypasses the IPS
Traffic is also copied
to the monitor ports
The bypass switch protects against both physical link failure and application failure on the IPS. The bypass switch
checks the path through the IPS by sending a packet at a predetermined rate—for example, once every second—to the
IPS from monitor port 1. When the bypass switch receives the packet on monitor port 2, having passed through the IPS,
it knows the path is valid. If the bypass switch does not receive the packet as expected, three times in a row, the bypass
switch automatically enters Bypass On mode. The switch continues to send Heartbeat packets, and it returns to Bypass
Off mode when it receives a Heartbeat packet on monitor port 2.
The contents of the Heartbeat packet, the interval at which it is sent, and the number of retries that trigger Bypass On
are congurable through the CLI. Another option enables Heartbeat packets to be sent in both directions, from port 1 to
port 2, and from port 2 to port 1.
Forced Bypass On
A command can be issued over the management interface to force a bypass switch into Bypass On mode. For example,
the CLI command switch set sw=1 mode=bp_on forces switch 1 into Bypass On mode. This feature is useful if you
want to manually take the IPS ofine at any time.
Tap Mode During Bypass
When a bypass switch is in Bypass On mode, it operates as a normal network Tap by copying the trafc received at
network port A to monitor port 1, and trafc received at network port B to monitor port 2. This function enables the
attached device to monitor network trafc out-of-band, for instance, to baseline the system prior to putting the device
in-line. The only difference from a normal network Tap is that Heartbeat packets continue to be transmitted (if the
Switch is not in Manual Bypass mode) in order to detect when the monitoring tool comes back online. If desired,
passing of trafc during Bypass On mode can be disabled through the CLI.
iBypass HD
Note: __________________________________________________________________________________________________
When using the bypass switch as a network Tap, be sure to set the Bypass Detect Feature to "OFF" so the ports remain
on constantly.
________________________________________________________________________________________________________
Figure 4: Bypass On mode showing Tap mointoring trafc
5
iBypass HD
Trafc Statistics
The iBypass HD collects statistics about the trafc passing through each of its ports. The statistics can be viewed and
cleared through the management interface.
The trafc statistics collected by the bypass switch on each of its ports are:
• Peak trafc rate
• Time of the peak trafc
• Current bandwidth utilization
• Total number of packets
• Total number of bytes
• Number of Cyclical Redundancy Check (CRC) errors
• Number of oversize packets
Note __________________________________________________________________________________________________
The trafc statistics counters are 32 bits wide, so the maximum value of each counter is 4,294,967,295. The counters
roll over to 0 after the maximum count is reached. Be aware that, at 1 Gbps, the Total Bytes counter can roll over in as
____________________________________________________________________________________________________________________________________________________________
short a time as 0.34 seconds and the Total Packets counter in 22 seconds.
CRC Forwarding
The iBypass HD forwards all packets to the monitor ports, even packets that have CRC errors.
Jumbo Packets
The iBypass HD can be set to accept or reject jumbo packets, which are packets longer than the Ethernet standard
maximum length of 1,518 bytes. The maximum packet size passed to the monitor ports by the iBypass HD can be set
from 64 to 12,000 bytes.
Link Fault Detect
The iBypass HD supports the Net Optics Link Fault Detect (LFD) feature on the in-line network ports. When LFD is on,
if one port of an in-line pair loses link, the other port is forced to drop the link as well. This feature ensures that switches
and routers on both sides of the link see the failure so they can take remedial action such as rerouting trafc around the
failed link. This feature can be turned on or off through the management interface.
Note: __________________________________________________________________________________________________
When a port is set for autonegotiation and LFD is on, autonegotiation can take as long as 10 seconds. During this
period, the link speed can change and the Link LED might go on and off several times.
________________________________________________________________________________________________________
Bypass Detect
The Bypass Detect feature enables an IPS to be alerted when the bypass switch is in Bypass On mode. When Bypass
Detect is enabled and the switch is in Bypass On mode, monitor ports 1 and 2 are cycled off for 5 seconds followed by
on for 15 seconds. The loss of link signals the IPS that the switch has entered Bypass On mode, while the 15 seconds of
on time enable the switch to test the state of the IPS by issuing Heartbeat packets.
6
iBypass HD Management
The iBypass HD is congured and managed using a command-line interface (CLI) that will be familiar to most network
administrators. GUI-based Indigo management tools will be available soon.
The iBypass HD Front Panel
The features of the iBypass HD front panel are shown in the following diagram.
Switch 1 Switch 3 Switch 5 Switch 7
Power LEDs
Network
Ports
(LC)
Monitor
Ports
(SFP)
Network
Ports
(LC)
Monitor
Ports
(SFP)
Network
Ports
(RJ45)
Monitor
Ports
(RJ45)
Network
Ports
(RJ45)
iBypass HD
Monitor
Ports
(RJ45)
Network
Ports
(LC)
(SX Fiber DBM)
Monitor
Ports
(SFP)
Switch 2 Switch 4 Switch 6 Switch 8
DBM 1
Network
Ports
(LC)
(LX Fiber DBM)
Monitor
DBM 2
Ports
(SFP)
Network
Ports
(RJ45)
(10/100/1000Copper DBM)
Monitor
Ports
(RJ45)
DBM 3
Network
Ports
(RJ45)
(10/100/1000 Copper DBM)
Monitor
Ports
(RJ45)
DBM 4
Figure 5: The iBypass HD Front Panel (any mix of DBM types is allowed)
Dual Bypass Modules (DBMs)
Four removable DBMs occupy four DBM slots in the chassis. Figure 5 illustrates a unit congured with two DBMs
with copper interfaces and two DBMs with ber interfaces. Each DBM contains two complete bypass switches. The
DBMs plug into an internal backplane board which contains the processor that runs the management interfaces and
manages the switches. For purposes of identication, the DBMs are numbered 1 to 4 from left to right across the
unit. The bypass switches are numbered 1 through 8 (sw1 through sw8 in the CLI), with switches 1 and 2 in DBM 1,
switches 3 and 4 in DBM 2, switches 5 and 6 in DBM 3, and switches 7 and 8 in DBM 4. Within each DBM, the oddnumbered (lower number) switch is the top row of ports and the even-numbered (high number) switch is bottom row of
ports.
Ports
Each DBM has eight ports, four for each bypass switch. Within each bypass switch, the network ports for the link
connections are designated A and B, and the monitor ports for the IPS connections are 1 and 2. The port order from left
to right is A, B, 1, 2. (In the CLI, the ports in bypass switch 1 are named sw1.A, sw1.B, sw1.1, and sw1.2. Although
the CLI is generally case sensitie, for the network ports lower case letters are also accepted, so the network ports can be
identied as sw1.a and sw1.b.) All ports support 1 Gigabit link speeds; 10/100/1000 copper ports are also supported.
Power LEDs
In the upper left-side corner of the front panel, two light-emitting diodes (LEDs) indicate the states of the two
redundant power supplies. The LED is illuminated if the power supply is supplying power; the LED is off when the
power supply is off.
7
Port LEDs
Each port has LEDs that indicate the port's Link state and Activity. The LED on the left is the Link LED; it is
illuminated when a link is established. The LED on the right is the Activity LED; it blinks when trafc is passing
through the port. For 10/100/1000 ports, the Link LED illuminates green when the link speed is 1000 Mbps, yellow
when it is 100 Mbps, and amber when it is 10 Mbps.
The iBypass HD Rear Panel
The features of the iBypass HD rear panel are shown in the following diagram.
10/100/1000
Ethernet
Management Port
Console Port
iBypass HD
AC Model
10/100/1000
DC Model
Figure 6: The iBypass HD Rear Panel, AC models (top) and DC models (bottom)
Major features of the rear panel include:
RJ45
RS232D
Ethernet
Management Port
Console Port
RJ45
RS232D
Replaceable Fan Tray
Replaceable Fan Tray
(2) Hot Swappable
Power Supplies
(2) Hot Swappable
-48VDC Power Supplies
• Management Port—A 10/100/1000 network port for the remote management interfaces and software updates;
the CLI runs over an SSH connection through this port; Indigo management tools, when available, will connect
through this port
• Console Port —RJ45 RS232 serial port for the CLI
• Cooling Fans —Four cooling fans in a replaceable tray module; power must be removed from the unit when
replacing the cooling fans
• Power Supply Modules—Universal-input (100-240VAC, 47-63Hz) or -48VDC, hot-swappable power supplies
with integrated cooling fans; each supply can power the unit independently; dual supplies provide redundancy
to maximize uptime
8
iBypass HD
Chapter 2
Installing the iBypass HD
This chapter describes how to install and connect iBypass HD devices. The procedure for installing the iBypass HD
follows these basic steps:
1. Plan the installation
2. Unpack and inspect the iBypass HD device
3. Install DBM modules
4. Install SFP modules
5. Rack mount the iBypass HD device
6. Connect power to the iBypass HD
7. Connect the command line interface (CLI) RS232 RJ45 port or the Management port (SSH)
8. Log into the CLI
9. Use the CLI Help command
10. Congure the iBypass HD parameters using the CLI
11. Connect the iBypass HD to the network
12. Connect IPSs to the iBypass HD
13. Congure the bypass switches
14. Check the installation
9
Plan the Installation
Before you begin the installation of your the iBypass HD device, determine the following information:
• IP address of the iBypass HD device for the management interface; or a range of IP addresses if you are
deploying multiple the iBypass HD devices
• Net Mask for the iBypass HD
• IP address of the remote management console, if deployed over a WAN; this address will be used for SNMP
traps (when available)
• Gateway to the remote management console, if deployed over a WAN
• Port assignments for the network and monitor port connections
Make sure you have a suitable location to install the iBypass HD device. For power redundancy, use two independent
power sources.
Unpack and Inspect the iBypass HD device
Carefully unpack the iBypass HD device, power supplies, and all cables that are provided. The iBypass HD is delivered
with the following:
• (1) the iBypass HD chassis
• (1 to 4) DBMs (might already be installed in the iBypass HD chassis)
• (2) Power cords (AC model only)
• (1) Cable, 3 Meter, RJ45, CAT 5e 4-Pair (Purple)
• (1) DB9-to-RJ45 RS232 adapter for use with the CLI
• (1) iBypass HD Quick Install Guide (one sheet)
• (1) CD containing the iBypass HD User Guide (this document)
• Service Plan Reference Guide
• Registration instruction card
• Extended Warranty if purchased
iBypass HD
Check the packing slip against parts received. If any component is missing or damaged, contact Net Optics Customer
Service immediately at +1 (408) 737-7777. (Note: SFP modules are ordered and shipped separately.)
10
Install DBMs
If the Dual Bypass Modules (DBMs) are not already installed when you receive the unit, install them by sliding them
into the DBM slots in the front panel. DBMs can be installed in any or all of the four slots; if you do not populate all
of the slots, it does not matter which ones you leave empty. If there is a plate covering the DBM slot, remove it by
unscrewing two thumb-screws; then install the DBM module. The DBM circuit boards slide in the rails provided in the
slots. Push in the DBM rmly until you feel the connectors mate and the bezel is ush with the front panel, but do not
force them. If you encounter resistance, withdraw the module and try again, making sure to align the circuit board in the
rails and slide the module straight in. When the DBM is fully seated, fasten it to the front panel with the two captured
thumbscrews. Unused slots should be protected with blank cover plates.
iBypass HD
Slot 1 Slot 2 Slot 3 Slot 4
Figure 7: Installing Dual Bypass Modules (DBMs)
DBMs can be hot-swapped, that is, you can remove and insert DBMs while the iBypass HD is under power and operating.
Tip! ___________________________________________________________________________________________________
You can remove DBMs from the iBypass HD chassis without disconnecting the network cables. Network trafc will
keep owing because the DBM module itself is a fully passive network Tap. In ber DBMs, optical switches keep the
network paths open when the DBM is unpowered, even if it is removed from the chassis. In copper DBMs, mechanical
relays keeps the network paths open to trafc.
________________________________________________________________________________________________________
Install SFP Modules
SFP modules are shipped separately. Install them as desired in the SFP slots in the DBMs in the front of the chassis. For
each module, remove the temporary plug from the SFP slot and insert the module until it clicks into place.
Note: __________________________________________________________________________________________________
Net Optics warrants operation with SFP modules sold by Net Optics only.
________________________________________________________________________________________________________
11
Loading...