Where to Deploy the NBA

You must correctly deploy the NBA in terms of its network location and the data inspection port:

The NBA must not be connected between your corporate firewall and the Internet. It needs to listen to traffic before the firewall or other devices using NAT (Network Address Translation) that hide local addresses from the Internet. If the NBA is incorrectly located, machine IP addresses may not match the actual IP addresses of the source machines.
You must use the correct data inspection port on the back of the NBA to receive replicated data packets from a network switch.
- On Bivio 2000 appliances, use the s0.e0 Ethernet port.
- On Bivio 7000 appliances, use any combination of the s0.e0, s0.e2, s0.e4 and s0.e6 Ethernet ports.
If the NBA output mode is set to 'Disk' or 'Socket and Disk', the NBA is limited to a capture rate of 8 Mbyte/sec.
You can connect the NBA to a network segment with traffic rates higher than this, but the sustained rate of data capture is limited to the speed that captured data files can be written to hard disk. Other data is ignored by the NBA and passes through the appliance without being analyzed or captured.

Output modes are determined by the <capture> tag in nbaconfig.xml.

More information: