[ previous ] [ next ] [ threads ]
 
 From:  Christiaens Joachim <jchristi at oce dot be>
 To:  "'sylvain at dimpact dot com'" <sylvain at dimpact dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall] interface mirror
 Date:  Wed, 17 Mar 2004 12:18:54 +0100 
> -----Original Message-----
> From: Sylvain Lapointe [mailto:sylap69 at sympatico dot ca]
> Sent: dinsdag 16 maart 2004 21:15
> To: m0n0wall at lists dot m0n0 dot ch
> Subject: Re: [m0n0wall] interface mirror
> 
> 
> Christiaens Joachim wrote:
> 
> >>-----Original Message-----
> >>From: Sylvain Lapointe [mailto:sylap69 at sympatico dot ca]
> >>Sent: dinsdag 16 maart 2004 16:36
> >>To: m0n0wall at lists dot m0n0 dot ch
> >>Subject: [m0n0wall] interface mirror
> >>
> >>
> >>
> >>Firt sorry for my very bad english....
> >>
> >>I would like to know if is possible to the interface 3 was a 
> >>mirror the 
> >>interface 2 for connect de interface 3 with an IDS.
> >>
> >>I dont know if my question is clear
> >>
> >>thanx for your help
> >>
> >>Sly
> >>    
> >>
> >
> >If I get it, you want to bridge an interface, right? That 
> can be done! Go to
> >the interface (assign it first if not done yet) and just 
> select 'bridge with
> >xxx' where xxx is the interface you want to monitor with your IDS...
> >I don't know if bridging will pass everything to your IDS though...
> >
> >Joachim
> >
> >
> >  
> >
> 
> Ok I select bridge with LAN for sis2
> 
> I need firewall rules for everything pass on the bridged nics?
> 
> I use a cossOver cable to connect sis2 with my nic on my IDS
> 
> Thanx for your help
> 
> sly

De rien ;-)

Well like Brandon said, it might not pass everything with bridging.

If you want to give it a try, you will not have to create rules, as long as
you don't activate 'filtering bridge' in the advanced config.

The cross-over is fine, but if it doesn't work (not all packets are 'seen'
by the IDS), then a hub (no switch!) between your WAN connection, the m0n0
and your IDS would solve that (and would leave sis2 unused).

Regards, bat,
Joachim


-----------------------------------------------
MISSION STATEMENT 
-----------------------------------------------
Oce enables its customers to manage their documents efficiently and
effectively by offering innovative print and document management products
and services for professional environments.

-----------------------------------------------
DISCLAIMER 
-----------------------------------------------
This e-mail message and any attachment are intended for the sole use of the
recipient(s) named above and may contain information which is confidential
and/or protected by intellectual property rights.
Any use of the information contained herein (including, but not limited to,
total or partial reproduction, communication or distribution in any form) by
other persons than the designated recipient(s) is prohibited.

If you have received this e-mail in error, please notify the sender either
by telephone (0032-2-729.48.11) or by e-mail and delete the material from
any computer.
Oce-Belgium/Oce-Interservices is nor responsible for the correct and
complete transfer of the contents of the sent e-mail, neither for the
receipt on due time.  This e-mail message does not bring about a contractual
obligation for Oce-Belgium/Oce-Interservices.

Thank you for your cooperation.

For further information about Oce-Belgium/Oce-Interservices please see our
website at www.oce.be

-----------------------------------------------