1. Home
  2. pfSense® Software
  3. General pfSense Questions
  4. Span port for network intrusion detection

Span port for network intrusion detection

  • Z

    Hi,

    I have pfsense setup on a box that contains three NIC interfaces. I have one configured for WAN and the other for LAN. I was wondering if it is possible to setup port mirroring/span with the third NIC so  I can send network packets from there to a network intrusion detection server?

    If anyone can shed some light on how to do this, that would be great!

    Thank you all for your time!
    Regards,
    Ken

    0
  • D
    Banned

    Interfaces - Assign - Bridges - Advanced Options  - Span Port

    0
  • johnpoz
    LAYER 8 Global Moderator

    wouldn't you normally just do that at your switch?

    0
  • Z

    Thanks,  doktornotor

    @johnpoz: Yes, normally you would do that at the switch however I have an unmanaged switch. I was planning to put a TAP switch but the fact that I have three NIC's already on the firewall box and pfsense has spanning capabilities, I was thinking of going that route.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy