Hi, everyone
i have one question, is a way to grab all traffic that go through my Mikrotik and analyze with pfsense and suricata?
Is there a option in pfsense that allow me to use tzsp encapsulate all traffic that is go trough my core mikrotik router.
pfsnese can be setup as a transparent bridge https://youtu.be/1EXgyvwJZ6k and you could get the traffic to it by using a port mirror on the Mikrotik.
Port mirroring with tp-link switches its not good idea, at least in my case.That is bcs when i mirror port in my core sw witch is tp-link, i can see only broadcast traffic and multicast traffic.