I would love to get my hands on an ettercap package for pfsense

  • I find that pfsense is an amazing firewall, but I'd like to be able to determine just what is connected to where via either ip or port. The shell command PTop is pretty good but I'd like to be able to examine on a case by case basis what kind of traffic is going through any particular LAN IP on any particular port on that machine.

    Mainly I can see graphs of traffic over an interface, but I'd like to know just which LAN/WiFI IP is responsible for this traffic, as well as what port they're using to cause said traffic. Say someone is using my ftp. I'd like to see traffic over port 21.

    I use ettercap a lot for various things and it would be great if there were such a package for pfsense. There is no compiler so I cannot just build it myself.

    Anyone have any idea how I could go about getting this tool on pfsense?

  • Do this on a test system like a vmware version fo pfsense to test out prior to testing on your production box
    Doing this setup is at your own risk
    First off I recommend etherape instead of ettercap because the version on the site is ettercap gtk2 which requires X
    do a uname on your system determine the release version you have 6.2 Release in my case.(using pfsense 1.2 release )
    then setup the environment variable to the appropriate version of freebsd. the env is as follows
    set PKG_PATH=ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-6-stable/All/
    the do
    pkg_add -v ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-6-stable/All/ettercap-gtk2-0.7.3_5,1.tbz

Log in to reply