TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
Hi,
I have a multihomed network sensor running on WIN2K.The sensor has two of
the NIC's running in stealth mode and the other has an IP address( for
management from the console).Each NIC terminates on a sepreate VLAN on two
different switches.
Here's the setup:
server VLAN---------SWITCH------>FW<-------------SWITCH--------DMZ VLAN
| |
| Nic1 Nic2 |
|________Sensor______________|
| in stealth mode
NIC3|
|_______CONSOLE
I have mapped the each of the NIC ports on the SW's to sniff all traffic
from the respective FW interfaces.
The problem is that on the console, i'm able to sniff/receive traffic from
only the DMZ VLAN and not the SERVER VLAN.
I tried swapping the NIC cards...Also tried to keep the other NIC in stealth
mode.....without any breakthrough.
Is it that the Sensor is bound to a NIC during installation and cannot have
more than one NIC's running in stealth mode?
Solutions will be appreciated.
Thnks,
Dennis Francis
Bangalore Labs,India
Tel: +91-22-6603080
Mob: +91-98204-29365
www.bangalorelabs.com
'Internet Infrastructure Managers'
