Jump to content

Span Port

n0x

By n0x
in Hacks & Mods

 Share

Recommended Posts

n0x Newbie

n0x

Posted
Posted

Cisco Catalyst Switches have a functionality that allows you to span a port for Packet Analysis.  See this article for more info:

http://www.cisco.com/warp/public/473/41.html

Does any one know if there is a Linux application that can duplicate this technology? My goal is to have an in-line device with with two network interfaces that can do port spanning.

Link to comment
Share on other sites
Sparda Newbie

Sparda

Posted
Posted

You could do it with a computer that has three network cards.

Bridge two the network cards so they are seamlessly, then route all in bound traffic on the two ports to the third network card, all inbound traffic on the third card should have no route ('null routed').

A WRT can't do this as it only has two network adapters. You need some thing with three network adapters. Perhaps one of those NAS devices that you can install Linux on, plug two additional NIC's in to to it's USB ports.

Link to comment
Share on other sites
  • 5 months later...
Sparda Newbie

Sparda

Posted
Posted
I know this may be reaching into the past but, a hub is what you are looking for. A hub is often used because switches used to only have one span port.

A hub isn't quite right. A hub would be noticeable if you where trying to be stealthy about it (for what ever reason).

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...