Switch basics?

Duduhandelman · June 5, 2012, 2:47pm

Hi All,
I’m using a few Mikrotik routers all is working great.
There are a few things that I’m not sure regarding the switch.

What can I do with switch rules? Copy to CPU or redirect to CPU
Master port it’s a must? I can use the port even when it’s a master port
Is there any way to sniff data from the switch?

Many Thanks

kirshteins · June 7, 2012, 7:43am

Switch rules can do basic traffic filtering. Copy to CPU will send copy of the traffic to CPU while redirect to CPU will send actual traffic.
You switch ports by assign master-port to slave ports, so master-port is a must for such configuration.
There is a mirroring feature.

Duduhandelman · June 7, 2012, 7:53am

Thank you.
What is the actually usage for copying or redirecting to the CPU?
Thanks again.

kirshteins · June 7, 2012, 8:00am

There is some traffic that will go only through the switch chip and no CPU of the router. You can change that with these features.

Duduhandelman · June 7, 2012, 8:05am

Thank you.
Can you please provide an example of a real usage?
Many thanks

Hammy · June 23, 2015, 5:54pm

I too would like to see an example of the “redirect-to-CPU” in use. I was hoping to use the switch chip to pass most data at wirespeed, but then use rules to pull some traffic out, process it and pass it on if the firewall rules permit.

pukkita · June 23, 2015, 6:11pm

+1 it looks that ACL filtering is done without copying to CPU? Do copy to CPU and then firewall cover the rest of cases?