news, span port support has been added
to use the feature, goto system->advanced page. a option called 'Span
default rules' is appended. when enabled, all packets handled by those
machine generated default rules will be sent out the span interface.
there is also a 'span' option available when adding or editing a
firewall rule. when enabled, packets handled by that rule will be sent
out the span interface.
befor using this feature, a physical interface must be marked as the
'span' interface, either by the console menu, or by adding the <span>
section in the <interfaces> section in the config.xml, eg:
and the span interface must be a dedicated interface and can't be a
wireless interface, for the security reason.
sorry for my poor english
2005/8/8, edward mzj <edward dot mzj at gmail dot com>:
> news, files are updated since the last post(bug fix)
> what's next? may be add support for 'span' interface, like span ports
> in most managable switches, so that interested traffic can be arbita
> to a packet sniffer or a snort ids.
> 2005/8/7, edward mzj <edward dot mzj at gmail dot com>:
> > sorry. gmail messed up the patch file. it can be downloaded @
> > http://220.127.116.11/m0n0/1.2b9/p3.patch
> > 2005/8/7, edward mzj <edward dot mzj at gmail dot com>:
> > > hi guys, i just added a few codes to m0n0, enabling inbound/outbound
> > > nat on lan interface, policy outbound nat, and inbound load-balancing
> > > on a simple round-robin basis. anyone interested?