Richard's blog @ http://taosecurity.blogspot.com/search?q=taps and especially his books (Tao of Network Security Monitoring and Extrusion Detection) are the best sources I have ever found, concerning [not only] taps and[/but] so much more on the subject - proper usage and best methodologies and practices for network monitoring (and not only for security!!!) Stefan On Tue, Jul 29, 2008 at 7:12 PM, Christopher Morrow <morrowc.lists@gmail.com
wrote:
On Wed, Jul 30, 2008 at 12:35 AM, Jared Mauch <jared@puck.nether.net> wrote:
Check out packet forensics depending on what your ultimate requirements are.
I would also add a 'see packet forensics'...
On Jul 29, 2008, at 7:10 PM, "John A. Kilpatrick" <john@hypergeek.net> wrote:
We've deployed a bunch taps in our network and now we need a platform on which to capture the data. Our bandwidth is currently pretty low but
I've
got 8 links to tap, which means I need 16 ports. Has anyone done any research on doing accurate packet capture with commodity hardware?
-- John A. Kilpatrick john@hypergeek.net Email| http://www.hypergeek.net/ john-page@hypergeek.net Text pages| ICQ: 19147504 remember: no obstacles/only challenges