Software TAP

To: debian-isp@lists.debian.org
Subject: Software TAP
From: Julian De Marchi <julian@jdcomputers.com.au>
Date: Wed, 11 Apr 2007 15:22:36 +1000
Message-id: <461C709C.3090908@jdcomputers.com.au>

Hi fellow Debian users,

I am currently researching the many setups of snort. I am after adviceon the most practical tap setup to get the most out of snort. The ideasthat have currently been presented to me are as follows:

- Hub between router (pri internet connection) and 1st mainswitch(collisions are a concern with this)

- Using the SPAN port if my switch has it (un-sure at present)

- Or build a Debian solution and configuring the network cards inbridged mode

- Hardware tap

What are the best ideas for a tap? Are any of the above suitablesolutions for a tap? My network is under medium traffic, serving around10 websites and 20 email accounts, across 2 servers currently, will beexpanding to 4 in the near future(waiting on second net connection).1gig average daily bandwidth.


Kind regards,

Julian De Marchi

Reply to:

Prev by Date: Re: Upgrading to Etch
Next by Date: Re: Upgrading to Etch
Previous by thread: Re: Upgrading to Etch
Next by thread: Strange module load behaviour
Index(es):
- Date
- Thread