Hey guys im trying to setup port mirror on my kali to sniff traffic, if i passthru the pci of the nic raw i can see all traffic but if i use linux bridge and give it vmbr150 i only see broadcasts some arp and icmp but none is from the mirrored traffic how can i fix this so i dont have to passthru the pci device?
This is the traffic im getting which is nothing, my ap, servers do go threw the mirrored port so i should see everything
Code:
auto lo
iface lo inet loopback
auto enp13s0
iface enp13s0 inet manual
#Main One
auto enp3s0
iface enp3s0 inet manual
#First
auto enp4s0
iface enp4s0 inet manual
auto enp5s0
iface enp5s0 inet manual
auto enp6s0
iface enp6s0 inet manual
auto vmbr0
iface vmbr0 inet static
address 10.0.0.15/24
gateway 10.0.0.1
bridge-ports enp13s0
bridge-stp off
bridge-fd 0
auto vmbr150
iface vmbr150 inet manual
bridge-ports enp3s0
bridge-stp off
bridge-fd 0
pre-up ip link set enp4s0 promisc on
source /etc/network/interfaces.d/*This is the traffic im getting which is nothing, my ap, servers do go threw the mirrored port so i should see everything