Feature Requests

M0n0 is great and I love it!

One feature that you might want to consider is enabling remote network capture (winpcap / wireshark). Read this:

http://www.winpcap.org/docs/docs_41b2/html/group__remote.html

Network capture helps a lot when troubleshooting network problems.

Hope the community shares my idea!

Thank you!

... I'd like to expand this:

capture at selectable interfaces
- physical interfaces (eth0,...)
- logical interfaces (ipsec,..)

This would be great when having PPPoE connection
problems (no IP address assigned). And it is getting
more and more difficult to get real hub10 or hub100
hardware for traffic capturing.

Another idea would be to use m0n0 as a bridge running
on a service notebook with two interfaces. Combined
with packet capturing .... wow.

For long term capturing maybe there is a way to store
a pcap-file on a separate ftp/tftp server.

Thanks.

One more vote for this feature!

please please PLEASE add this, +1 vote!

you could upload tcpdump and ncat via /exec.php and run tcpdump piped to ncat pointing to a remote machine runing wireshark ?

ncat  http://ftp6.tw.freebsd.org/FreeBSD/ports/i386/packages-6-stable/net/nc-1.0.1_1.tbz

tcpdump http://ftp6.tw.freebsd.org/FreeBSD/ports/i386/packages-6-stable/net/tcpdump-4.1.1.tbz

tcpdump -n -s 0 -w - | ncat 111.111.111.111:44444

where 111.111.111.111 is you system with wireshark running

wireshark -k -i <(nc -l -p 44444)

Tried Pokot0's suggestion but ran into an error saying lipcap.so.1 could not be found.

Grabbed http://ftp6.tw.freebsd.org/FreeBSD/ports/i386/packages-6-stable/net/libpcap-1.1.1.tbz and copied libpcap.so.1.1.1 to /tmp on the device, renamed it to libpcap.so.1.

I'm now getting an error saying Shared object "libsmi.so.2" not found, required by "tcpdump". Still looking for a package that has that file, maybe someone knows how to get it working?

George

Not long ago I've tried that using the latest version of m0n0 and I've run into libraries not found problems.

This is a feature that would be of great benefit. 

Please consider adding this.

This is one of those things that will never be resolved.  Adding it would be a large potential security risk, and up the requirements significantly.  And many people want to keep m0n0wall lean and mean.  That said, pfSense may be a good alternative, as it has a lot of additional things that can just plug in.  It does have a larger footprint, however.

I guess this is somewhat related. I created a custom m0n0wall version 1.8.1b552 that includes the following for tcpdump testing purposes:

tcpdump
ncat
csh shell

The csh shell can be accessed from the m0n0wall console menu.


http://www.datafilehost.com/d/7c703bf9 (generic img)

http://www.datafilehost.com/d/e0f46ac4 (serial img)

http://www.datafilehost.com/d/fd229b5f (iso)