[ previous ] [ next ] [ threads ]
 
 From:  Ugo Bellavance <ugob at camo dash route dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: A few modification to m0n0, anyone interested?
 Date:  Thu, 25 Aug 2005 10:31:19 -0400 
edward mzj wrote:
> news, span port support has been added
> patch file
> http://61.132.118.190/m0n0/1.2b9/p3.patch.latest
> 
> img file
> http://61.132.118.190/m0n0/1.2b9/generic-pc-1.2b9.0508252024.img
> 
> to use the feature, goto system->advanced page. a option called 'Span
> default rules' is appended. when enabled, all packets handled by those
> machine generated default rules will be sent out the span interface.
> there is also a 'span' option available when adding or editing a
> firewall rule. when enabled, packets handled by that rule will be sent
> out the span interface.
> 
> befor using this feature, a physical interface must be marked as the
> 'span' interface, either by the console menu, or by adding the <span>
> section in the <interfaces> section in the config.xml, eg:
> <span>
> <if>fxp2</if>
> </span>
> 
> and the span interface must be a dedicated interface and can't be a
> wireless interface, for the security reason.
> 
> sorry for my poor english
> 

I don't care :).  This is greeeeeeeeeat news.  I'm ready to compromise a
bit of security for the capability of having an IDS without paying for a
switch with a span port.  Will someone create flash card images eventually?

Regards,

Ugo

-- 
Ugo

-> Please don't send a copy of your reply by e-mail.  I read the list.
-> Please avoid top-posting, long signatures and HTML, and cut the
irrelevant parts in your replies.