Hi all,
I have to do a sort of Man in the Middle analysis: i try ti explain it better..
Schema-MOTM.png
I would like to study all the traffic between an IP PBX and all the rest of the network.
After that, i would like drop som kind of traffic, based on specific ACL.
I need to put a Mikrotik in the middle, in L2: what is the best way to to that, especially if i will implement ACL, QoS, ect?
What is the best alternative of the Bridge?
Thanks,
dstncl
Personally I’d firewall at the L3 edge rather than L2. However, I’m curious what project you’re working on? I’m working on something similar myself.
Hi,
sometime i need to troubleshoot networks where there are devices that i don’t manage, and first of all where i can not have access.
In this case i would like to analyze traffic from (and to) a PBX, and maybe apply specific ACL, QoS, Marking Packets and connections, deny multicast, block specific ports…
It is not so complicated, but i just would like to know if there are other ways, instead of using the Bridge.
Regards,
Dstncl
You can use switch-level port mirroring if your board is equipped with a switch chip.
Yes, i think so.
I’ll do some tests.
Thank you for the suggestion.
dstncl