Menu
What's new
By:
Filters Better Search

Enabling Port mirroring Asus RT-AC66U

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

ColinTaylor said:
"TEE" was added by Merlin back in November.
Bear in mind that this isn't "real" port mirroring. It's only duplicating packets that are routed through the router. If you want to capture packets destined for the router itself you would be better off installing Entware and the tcpdump package.
Click to expand...

Thank you for the advise and suggestion.
I'm not very familiar with Entware and tcpdump .... but I can study :)
https://github.com/Entware/Entware-ng/wiki/Install-on-asuswrt-merlin-firmware
http://www.tcpdump.org/
https://github.com/RMerl/asuswrt-merlin.ng/tree/master/release/src/router/tcpdump-4.4.0
 
Great topic and really good info, thanks!

Quick question: Is there a way to designate the mirrored traffic go out a specific physical lan port on the Asus router?
 
Hello all,
Not sure if someone already tried to do it on a Asus RT-AX88U, but every time I do the iptables commands, the router reboots.
Any idea?
 
I tried:

# iptables -A PREROUTING -t mangle -j ROUTE --gw 192.168.0.251 --tee
# iptables -A POSTROUTING -t mangle -j ROUTE --gw 192.168.0.251 --tee

and

modprobe xt_TEE
iptables -t mangle -A PREROUTING -s 192.168.0.1/24 -j TEE --gateway 192.168.0.251
iptables -t mangle -A POSTROUTING -d 192.168.0.1/24 -j TEE --gateway 192.168.0.251

(I need to reroute all traffic to Greycortex Mendel at my home lab for a training)

In both cases, the router rebooted after I applied the commands, sometimes right after the first or second command.

I'm using Asuswwrt merlin 384.19 firmware, but the same issue happens with stock firmware.
 
Hi all,

Can this functionality be built into the front end of Merlin? Actually, I do not think the settings survive a reboot, is that correct?

I would like to mirror all my traffic to a RPi running ntop.

Thanks

Jason
 
You could use a user script if you want the commands to survive a reboot. It's probably a bad idea to leave it permanently enabled though as I imagine it could have a noticeable impact on the router's performance.
 
MarceloCosta said:
I tried:

# iptables -A PREROUTING -t mangle -j ROUTE --gw 192.168.0.251 --tee
# iptables -A POSTROUTING -t mangle -j ROUTE --gw 192.168.0.251 --tee

and

modprobe xt_TEE
iptables -t mangle -A PREROUTING -s 192.168.0.1/24 -j TEE --gateway 192.168.0.251
iptables -t mangle -A POSTROUTING -d 192.168.0.1/24 -j TEE --gateway 192.168.0.251

(I need to reroute all traffic to Greycortex Mendel at my home lab for a training)

In both cases, the router rebooted after I applied the commands, sometimes right after the first or second command.

I'm using Asuswwrt merlin 384.19 firmware, but the same issue happens with stock firmware.
Click to expand...
Hello Marcelo

I have a similar requirement and the same problem.

I want to mirror any traffic in-/outgoing from/to the internet through my RT-AX88U and send it to my RPI.
Have you found a workaround in the meantime? I am using the latest firmware 386.1_2 on a Asus RT-AX88U.
Is it maybe not possible/allowed to just use 192.168.0.1/24?

Regards
Polly
 
You must log in or register to reply here.

Similar threads

S
Transfer files to another device (raspi) in the same network
Replies
3
Views
213
ColinTaylor
C
S
Guide Wireguard-portforwarding
Replies
13
Views
671
ZebMcKayhan
Z
drinkingbird
Anyone like to sniff stuff?
Replies
0
Views
708
drinkingbird
drinkingbird
D
Redirect port 443 to 8443
Replies
6
Views
294
Justinh
J
G
TV 100Mbps ok behind router, but not behind switch
Replies
17
Views
490
sfx2000
sfx2000
Similar threads
Thread starter Title Forum Replies Date
Mr Solis Enabling NAT Acceleration (CTF) breaks Port Forwarding? (RT-AC68U w/ 386.12_4) Asuswrt-Merlin 17
T Enabling SQM only on Asymmetrical Connection (1150/40) via AX86U Pro (3004.388.4) Asuswrt-Merlin 5
complexxL9 RT-AX88U Pro - 3004.388.4 - DHCP stops working after enabling JFFS Asuswrt-Merlin 2
J Enabling WireGuard Client Asuswrt-Merlin 2
S HELP! Asus Ax11000 (Merlin 388.2)- Slow 5ghz Speeds when Enabling Guest 2.4ghz Wifi Asuswrt-Merlin 3
dragon31337 Automatically rest ethX port to regain 1GB speed Asuswrt-Merlin 8
PaulA Port isolation on RT-AX88U-Pro (router) w/ Merlin w/ Tagged internet ISP Asuswrt-Merlin 1
N Connecting an ax58u to a BT homehub 5, via a lan port, and not getting internet access. Asuswrt-Merlin 3
D Redirect port 443 to 8443 Asuswrt-Merlin 6
GShlomi Sharing my DualWan with port forwarding and DDNS experience Asuswrt-Merlin 0

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 712 (members: 31, guests: 681)
Top