tijsvd - Slashdot User

Become a fan of Slashdot on Facebook

Comment Re:It's called Port Mirroring (Score 2, Insightful) 265

by tijsvd on Thursday February 12, 2009 @04:41PM (#26833083) Attached to: New Tool Promises To Passively ldentify BitTorrent Files

Two points.

One: the mirror port (aka span port) on your switch does not buffer the traffic, and will drop packets in any spike. That's true even for expensive Cisco switches. To get all traffic, you need a network tap on a line.

Two: getting the traffic isn't hard. It's basic sniffing. Analysing the traffic in realtime is what matters.

« Newer Older »

Slashdot Top Deals

I tell them to turn to the study of mathematics, for it is only there that they might escape the lusts of the flesh. -- Thomas Mann, "The Magic Mountain"