[ale] Etherreal and switches

runman runman at speedfactory.net
Thu Sep 28 18:16:12 EDT 2006 

Why not a simple transparent bridge ??  OpenBSD has a simple ready-made
setup where you can put 2 nics into a box and allow packets to pass  between
them.  pf can do any filtering and whatever you want can count/categorize
the packets.  Linux can do this also, but I only have experience with
OpenBSD.  Since each nic does not have an IP address it is secure and if you
want to network it then add a third NIC with an IP address.

- Greg 

> -----Original Message-----
> From: ale-bounces at ale.org [mailto:ale-bounces at ale.org] On 
> Behalf Of Christopher Fowler
> Sent: Thursday, September 28, 2006 10:09 AM
> To: ale at ale.org
> Subject: [ale] Etherreal and switches
> 
> I want to configure one Linux box to do packet capturing for 
> out small network.
> 
> It is simple and here is what it looks like:
> 
> [ Router ]
>    |
> [ Cisco 2900 XL]
> Servers:     | p24
>           [ Cisco 2900 XL ]
> Devel:       |         |
>    [ Generic Switch] [ Generic Switch ]
>      Test              Demo
> 
> 
> We have a router that goes to Internet.  Under that router we 
> have 2900XL.  That is for various clients and servers.  There 
> is an uplink going to another 2900XL and that is for the LAB.
> There are 2 uplinks on that going to a cheap switch for DEMO 
> equipment and a cheap switch for TEST equipment.  
> 
> On the first switch I guess I need to setup port 23 as a SPAN 
> port and attach the linux box to it.  How can I make sure I 
> get all the traffic that is passing on the 2nd XL?  Not all 
> of that traffic will be sent upstream to the first XL.  As 
> far as the cheap switches go I do not see a way to see all 
> their traffic since they do not have span port support.
> 
> Chris
> 
> 
> 
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
> 
> --
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.1.407 / Virus Database: 268.12.9/458 - Release 
> Date: 9/27/2006
>  
> 

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.407 / Virus Database: 268.12.9/458 - Release Date: 9/27/2006

More information about the Ale mailing list