shooter40sw
Senior Member
Hi guys, is there a way to port mirror so I can sniff the the WAN traffic or us snort or suricata as IDS, I saw through a search on the web to use the iptables mangle, but it did not work for me, it did not send the packets to the virtual machine IP where I had snort on, I have not adventured with snort on the router because I have a mips router and dont think it can handle it.
Any other suggestion to have an IDS in the local network keeping things simple...
Thanks
Any other suggestion to have an IDS in the local network keeping things simple...
Thanks