Gotta remember it has to be a SHARED hub, not switched.
And put the NIC in Promiscuous mode.
I have a machine setup for that.
It has 2 NICs in it. One for connecting to the LAN for regular stuff. Another for plugging into a hub, in listen only promicuous mode.
I bought on of the cheapest 10/100 hubs I could find. I leave daisy chained from the private interface of my Linux firewall.
That is the one thing I wish my unmanaged switches had, a mirroring port. (hmmm, an I idea.)
Basically, you could also use a real firewall, rather than a PIX. I hates them, I do, for reasons you are acutely aware of now.
Redo: Actually, now that I remember I am using a new setup, I actually just use the firewall itself to find the culprits. It is easy, run ethereal on the private interface for internal problems... run it on the public interface for external problems.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @
iwethey[link|http://it.slashdot.org/comments.pl?sid=134485&cid=11233230|"Microsoft Security" is an even better oxymoron than "Military Intelligence"]
No matter how much Microsoft supporters whine about how Linux and other operating systems have just as many bugs as their operating systems do, the bottom line is that the serious, gut-wrenching problems happen on Windows, not on Linux, not on Mac OS. -- [link|http://www.eweek.com/article2/0,1759,1622086,00.asp|source]
Edited by
folkert
April 8, 2005, 11:49:47 AM EDT
Gotta remember it has to be a SHARED hub, not switched.
And put the NIC in Promiscuous mode.
I have a machine setup for that.
It has 2 NICs in it. One for connecting to the LAN for regular stuff. Another for plugging into a hub, in listen only promicuous mode.
I bought on of the cheapest 10/100 hubs I could find. I leave daisy chained from the private interface of my Linux firewall.
That is the one thing I wish my unmanaged switches had, a mirroring port. (hmmm, an I idea.)
Basically, you could also use a real firewall, rather than a PIX. I hates them, I do, for reasons you are acutely aware of now.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @
iwethey[link|http://it.slashdot.org/comments.pl?sid=134485&cid=11233230|"Microsoft Security" is an even better oxymoron than "Military Intelligence"]
No matter how much Microsoft supporters whine about how Linux and other operating systems have just as many bugs as their operating systems do, the bottom line is that the serious, gut-wrenching problems happen on Windows, not on Linux, not on Mac OS. -- [link|http://www.eweek.com/article2/0,1759,1622086,00.asp|source]
