资 源 简 介
Net Mirror. Setup your traffic Mirrors to be monitored!
Introduction
NetMirror is a networking application that can be used as soft tap. You can define tcpdump filters and actions for that traffic:
Redirect traffic between interfaces.
Write pcap files.
Encapsulate traffic in UDP packets in order to forward them to another NetMirror host.
NetMirror use Python, Scapy, and runs on Linux.
Details
There are 3 type of actions that Net Mirror can do with the traffic filtered:
* Forward to another interface (ex: http traffic from eth0 to eth1)
* Write pcap file (ex: udp traffic from eth0 to /var/netmirror/udp-packets.pcap)
* Resend packets to a remote Net Mirror server (ex: forward 10.0.0.0/24 to a remote server)
Traffic received by remote servers can be reinjected to any interface.
Typical Usages:
* Track network activity in pcap.
* Distribute traffic to different IDS servers.
* Resend
