Dear all,
I’m sorry and i’m a newbie on firewall, please correct me if i’m wrong, what i understand the Packet Sniffer option on Mikrotik is any streaming before get thru the firewall rules, is possible to collect the streaming after the firewall rules ?
Please help. TQ
It will capture the packets as it enters the interface
Hi,
Thank you for the answer, but is it possible to capture the packet after the Mikrotik firewall rules ?
Thank you
Gnever looked into that, but suspect not
Hi,
Actually i’m running Mikrotik Packet Sniffer to my Suricata and the problem i keep receiving same packet from same ip eventhough the ip has been blocked on Mikrotik firewall, so that make Suricata are so busy and too much delay to send trigger back to Mikrotik, any advice please ?
Thank you so much
If you capture the packets on the outgoing interface in direction tx, it will be after firewall processing.
Dear Sir,
That great, but how to capture after the firewall process, anything can be done from terminal command line ?
TQ