Author Topic: Newb Question; how to log all packets, promiscuous mode on WAN (Read 993 times)

someone · « **on:** June 26, 2024, 02:00:17 am »

I havnt found a way
Is there a way to log all packets on WAN side, in promiscuous mode, thats what I was trying to alter in suricata yaml was turn it on,
but it resets to default after reboot. Not the log packets in the firewall having to do with a rule, but all packets on WAN
And does it store them in log files
Thanks in advance

someone · « **Reply #1 on:** June 26, 2024, 09:53:17 pm »

after thinking about that
I mean all packets coming with my IP, like suricata does
Like wireshark does
Can we add a package
Thanks

Patrick M. Hausen · « **Reply #2 on:** June 26, 2024, 10:00:12 pm »

tcpdump is installed by default.

someone · « **Reply #3 on:** June 26, 2024, 10:17:17 pm »

oh thanks
I didnt see it, feeling dumb
That I know how to use
I will try that in the shell
I keep liking opnsense more and more
Its easier and shows more faster than a linux box setup with suricata
Thanks again for your help

cookiemonster · « **Reply #4 on:** June 26, 2024, 10:29:09 pm »

Even better, tcpdump installed by default has GUI integration if you want that too.

someone · « **Reply #5 on:** June 26, 2024, 11:26:06 pm »

oh I missed that, wow
Its under interface - diagnostics - packet capture

Thanks again everyone for your help
Dont want to blab on to much

Author Topic: Newb Question; how to log all packets, promiscuous mode on WAN (Read 993 times)

someone

Newb Question; how to log all packets, promiscuous mode on WAN

someone

Re: Newb Question; how to log all packets, promiscuous mode on WAN

Patrick M. Hausen

Re: Newb Question; how to log all packets, promiscuous mode on WAN

someone

Re: Newb Question; how to log all packets, promiscuous mode on WAN

cookiemonster

Re: Newb Question; how to log all packets, promiscuous mode on WAN

someone

Re: Newb Question; how to log all packets, promiscuous mode on WAN