dear,
Running an IDS VM i realised i only see broadcast and such. What is the preferrable way to create SPAN ports so the IDS VM can monitor all traffic on the virtual networks and physical interfaces ?
I assume to monitor all traffic on the physical interfaces this is easy but VM to VM traffic is probably not as easy.
Pointers to the right documentation pages are also welcome.
Br,
Joris
ps: span ports are also called mirror interfaces
Running an IDS VM i realised i only see broadcast and such. What is the preferrable way to create SPAN ports so the IDS VM can monitor all traffic on the virtual networks and physical interfaces ?
I assume to monitor all traffic on the physical interfaces this is easy but VM to VM traffic is probably not as easy.
Pointers to the right documentation pages are also welcome.
Br,
Joris
ps: span ports are also called mirror interfaces
Last edited:
