Hi.
I have a Cisco span-port on my switch for IDS purposes. The thing is that I would like the IDS to be geographically on a different place, and it is not a option to have a dedicated L2 link for this. Therefor I would like this “tap-traffic” to traverse the Internet. I immediately thought of the MT, since I’ve used it a lot for tunneling purposes. I thought of putting up an EoIP tunnel, and somehow set it in “promiscuous mode” and tunnel all the “tap-traffic” over an EoIP tunnel (which also should be secured, of course) to another MT which then should bridge all this traffic out to, say ether2, where the IDS would be attached. But this seems like a hard nut to break. Another post on the subject:
http://forum.mikrotik.com/t/forwarding-all-traffic-over-an-eoip-interface/25867/1
Any nice ways to do this now?
Regards, Vegard.