pfSense Forum

pfSense English Support => General Questions => Topic started by: crevettedragon on February 01, 2018, 06:49:18 pm

Title: How to use pfsense as a transparent sniffer only
Post by: crevettedragon on February 01, 2018, 06:49:18 pm
Hi,

Here is my use case: I want to upgrade my current internet box with a pfsense box. However, the traffic between the tv box and the internet box is special and I want to investigate it to be able to properly configure my pfsense box.
(https://image.ibb.co/fDecg6/pfsensebbox.png)

As such I want a "sneaky" pfsense that will simply log all traffic and act as a simple Ethernet cable from the internet and tv box perspective.

What would be the best way to do it ?
Title: Re: How to use pfsense as a transparent sniffer only
Post by: Derelict on February 01, 2018, 07:33:29 pm
Why wouldn't you just use a switch with a mirror port there and do whatever you want with the traffic? Wireshark, tcpdump, etc.

Certainly easier than trying to be transparent with a proxy.

You don't need to hammer a square firewall into that round hole.
Title: Re: How to use pfsense as a transparent sniffer only
Post by: HackedComputer on February 09, 2018, 11:03:54 am
Why wouldn't you just use a switch with a mirror port there and do whatever you want with the traffic? Wireshark, tcpdump, etc.

Certainly easier than trying to be transparent with a proxy.

You don't need to hammer a square firewall into that round hole.

This or a LAN TAP such as a Throwing Star LAN TAP