Deployment2
From WFilter Documents and Tutorials
(Difference between revisions)
(10 intermediate revisions by one user not shown) | |||
Line 10: | Line 10: | ||
Disadvantages: | Disadvantages: | ||
* Requires "port mirroring" feature of your switch or router. | * Requires "port mirroring" feature of your switch or router. | ||
− | * In pass-by mode, WFilter sends RST packets to terminate tcp connections. But it can not block udp traffic, so you also need to block certain udp ports in your router or firewall. Please check: [ | + | * In pass-by mode, WFilter sends RST packets to terminate tcp connections. But it can not block udp traffic, so you also need to block certain udp ports in your router or firewall. Please check: [[Block_udp|How to block certain UDP ports in router/firewall?]] |
Line 30: | Line 30: | ||
*[[EdgeSwitch_port_mirror|EdgeSwitch]] | *[[EdgeSwitch_port_mirror|EdgeSwitch]] | ||
*[[Juniper_port_mirror|Juniper]] | *[[Juniper_port_mirror|Juniper]] | ||
+ | |||
+ | = Block UDP = | ||
+ | |||
+ | [[Block_udp|How to block UDP traffic?]] | ||
+ | |||
+ | = External Links = | ||
+ | * [http://blog.wfilterngf.com/?p=338 WFilter Pass-by deployment for multiple VLANs network.] | ||
+ | * [http://blog.wfilterngf.com/?p=168 WFilter deployment with gargoyle router.] | ||
+ | * [http://blog.wfilterngf.com/?p=170 WFilter deployment with a network tap.] | ||
+ | * [http://blog.wfilterngf.com/?p=171 WFilter deployment with openwrt router.] | ||
+ | * [http://blog.wfilterngf.com/?p=190 WFilter deployment with RouterOS's port streaming feature.] | ||
+ | * [http://blog.wfilterngf.com/?p=215 What's the difference between Pass-by filtering and Pass-through filtering?] | ||
+ | * [http://blog.wfilterngf.com/?p=216 Why a port mirroring switch is required to monitor my network?] | ||
[[Category:Deployment]] | [[Category:Deployment]] | ||
+ | [[Category:Solutions]] |
Latest revision as of 18:54, 16 July 2019
Contents |
[edit] 1 Pros and Cons
Pass-by deployment has the minimal influence to your current network. Advantages:
- Integrated with your current hardware, network topology can remain unchanged.
- No influence to your network performance. In pass-by mode, WFilter analyse copies of network packets and does not delay the original packets. So your internet speed will not be affected.
- Internet access is still available even if the WFilter computer crash or power off.
Disadvantages:
- Requires "port mirroring" feature of your switch or router.
- In pass-by mode, WFilter sends RST packets to terminate tcp connections. But it can not block udp traffic, so you also need to block certain udp ports in your router or firewall. Please check: How to block certain UDP ports in router/firewall?
Below is a list of "port mirroring" settings for WFilter to work.
[edit] 2 Port Mirroring Setting Examples
[edit] 3 Block UDP
[edit] 4 External Links
- WFilter Pass-by deployment for multiple VLANs network.
- WFilter deployment with gargoyle router.
- WFilter deployment with a network tap.
- WFilter deployment with openwrt router.
- WFilter deployment with RouterOS's port streaming feature.
- What's the difference between Pass-by filtering and Pass-through filtering?
- Why a port mirroring switch is required to monitor my network?