From time to time I used a USB Ethernet port:

https://www.bestbuy.com/site/shop/usb-to-ethernet-adapter

Generally they are about 25 USD. You might be able to find them on Ebay or other places for less than that. You might as well get a USB 3.0, since it will work with USB 2.0 ports, but USB 2.0 will not support 1 Gbit/second, whereas USB 3.0 will. On the other hand if the networking flow is not 1 Gbit/second then USB 2.0 might work fine.

I have found the Linux support for these generic USB Ethernet devices to be generally good.

md

On Fri, Apr 9, 2021 at 5:09 PM John Stoffel via WLUG <wlug@lists.wlug.org> wrote:

Guys,
I'm looking into Zeek and unfortunately I don't have a second ethernet
port on my main system, so it's not clear how I'd run a span port off
my main switch to grab traffic.

What hardware do people recommend for a zeek data collection node? I
guess I could spin up my old WRAP board (http://www.pcengines.ch)
which I used as my main router for years before I replaced it
recently. But it's not super fast. It's got three 1gb ports, and 4gb
of RAM with a 1Ghz single core AMD CPU. So it might do the job, esp
since I can install Debian Buster on there without too much trouble.
Sweet!

John
_______________________________________________
WLUG mailing list -- wlug@lists.wlug.org
To unsubscribe send an email to wlug-leave@lists.wlug.org
Create Account: https://wlug.mailman3.com/accounts/signup/
Change Settings: https://wlug.mailman3.com/postorius/lists/wlug.lists.wlug.org/
Web Forum/Archive: https://wlug.mailman3.com/hyperkitty/list/wlug@lists.wlug.org/message/HCS2LZB7CAB2PRPG5UBCFXWEWGA5KWQB/