Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 3 subscribers
  • Views 5596 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Monitoring port?

NewImage
Is there a way to set up a monitoring port on the UTM to send a copy of all traffic, or just some networks, to an external 3rd party IDS?


This thread was automatically locked due to age.
  • 0
    I don't believe it's possible on the UTM itself, but you could connect the port you want to monitor to a switch that supports monitoring and monitor from another switchport.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0
    Hi, the UTM's built-in Bridging can do this, at least for some configurations.

    However, for an enterprise environment, I would recommend using SPAN/MIRROR ports on your switches, or NetOptics TAPs instead.

    Barry
  • 0
    Note that if you have a lot of traffic, you may risk saturating the PCI bus with too many bridges.

    Barry
Cookie Information Banner