We have an OT network that I would like to monitor using IDS.
PLC controllers, SCADA, PCs and other objects controlled via the
Modbus communication protocol are located in different locations and are currently
connected to the Internet via GSM routers with a VPN tunnel (I need to have remote access to individual units in case of failure). '
Is there a hardware/software solution
that will allow me to send a copy of the traffic (mirror port) from locations A and B to
the router at point C and then forward this traffic to the network interface to
which the IDS is connected?
Important:
At the IDS level, I need to receive information about the IP addresses that established communication between each other.
For example, communication was established between the logo (IP: 192.168.0.xx) and the PLC (192.168.0.xx) on port 102.
